UCF STIG Viewer Logo

The xinetd.d directory must have mode 0755 or less permissive.


Overview

Finding ID Version Rule ID IA Controls Severity
V-22425 GEN003750 SV-26089r1_rule ECLP-1 Medium
Description
The Internet service daemon configuration files must be protected as malicious modification could cause Denial-of-Service or increase the attack surface of the system.
STIG Date
UNIX SRG 2013-03-26

Details

Check Text ( C-30071r1_chk )
Check the xinetd.conf file for any included directories.

Procedure:
# grep includedir /etc/xinetd.conf

If xinetd.conf does not exist, or there are no includedir lines contained within it, this is not applicable.

Check the mode of the included directories.
Procedure:
# ls -lL

If any of the included directories have a mode more permissive than 0755, this is a finding.
Fix Text (F-26900r1_fix)
Change the mode of included xinetd configuration directories to 0755.

Procedure:
# chmod 0755