UCF STIG Viewer Logo

The rsh daemon must not be running.


Overview

Finding ID Version Rule ID IA Controls Severity
V-220092 GEN003820 SV-220092r603266_rule High
Description
The rshd process provides a typically unencrypted, host-authenticated remote access service. SSH should be used in place of this service. Satisfies: SRG-OS-000505, SRG-OS-000555, SRG-OS-000033
STIG Date
Solaris 10 X86 Security Technical Implementation Guide 2022-09-07

Details

Check Text ( C-21801r489826_chk )
# svcs network/shell
If the service is enabled, this is a finding.
Fix Text (F-21800r489827_fix)
Disable the remote shell service and restart inetd.
Procedure:
# svcadm disable network/shell
# svcadm refresh inetd