Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-22430 | GEN003815 | SV-40810r1_rule | ECSC-1 | Medium |
Description |
---|
The portmap and rpcbind services increase the attack surface of the system and should only be used when needed. The portmap or rpcbind services are used by a variety of services using Remote Procedure Calls (RPCs). |
STIG | Date |
---|---|
SOLARIS 10 X86 SECURITY TECHNICAL IMPLEMENTATION GUIDE | 2015-12-07 |
Check Text ( C-39529r2_chk ) |
---|
If the system needs the portmap service to operate, this is not applicable. The rpcbind program is part of a core Solaris package and cannot be removed. Verify the permissions on the rpcbind file. # ls -lL /usr/sbin/rpcbind If the rpcbind service is not required and the rpcbind file has non-zero permissions, this is a finding. |
Fix Text (F-34662r1_fix) |
---|
Remove all permissions from the rpcbind file. Procedure: # chmod 0000 /usr/sbin/rpcbind |