UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The system must not use UDP for NIS/NIS+.


Overview

Finding ID Version Rule ID IA Controls Severity
V-4399 GEN006380 SV-45908r1_rule High
Description
Implementing Network Information Service (NIS) or NIS+ under UDP may make the system more susceptible to a Denial of Service attack and does not provide the same quality of service as TCP.
STIG Date
SUSE Linux Enterprise Server v11 for System z Security Technical Implementation Guide 2018-09-19

Details

Check Text ( C-43216r1_chk )
If the system does not use NIS or NIS+, this is not applicable.

Check if NIS or NIS+ is implemented using UDP.

Procedure:
# rpcinfo -p | grep yp | grep udp

If NIS or NIS+ is implemented using UDP, this is a finding.
Fix Text (F-39286r1_fix)
Configure the system to not use UDP for NIS and NIS+. Consult vendor documentation for the required procedure.