Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-220092 | GEN003820 | SV-220092r603266_rule | High |
Description |
---|
The rshd process provides a typically unencrypted, host-authenticated remote access service. SSH should be used in place of this service. Satisfies: SRG-OS-000505, SRG-OS-000555, SRG-OS-000033 |
STIG | Date |
---|---|
Solaris 10 X86 Security Technical Implementation Guide | 2022-09-07 |
Check Text ( C-21801r489826_chk ) |
---|
# svcs network/shell If the service is enabled, this is a finding. |
Fix Text (F-21800r489827_fix) |
---|
Disable the remote shell service and restart inetd. Procedure: # svcadm disable network/shell # svcadm refresh inetd |