Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-22425 | GEN003750 | SV-26089r1_rule | ECLP-1 | Medium |
Description |
---|
The Internet service daemon configuration files must be protected as malicious modification could cause Denial-of-Service or increase the attack surface of the system. |
STIG | Date |
---|---|
VMware ESX 3 Server | 2016-05-13 |
Check Text ( C-30071r1_chk ) |
---|
Check the xinetd.conf file for any included directories. Procedure: # grep includedir /etc/xinetd.conf If xinetd.conf does not exist, or there are no includedir lines contained within it, this is not applicable. Check the mode of the included directories. Procedure: # ls -lL If any of the included directories have a mode more permissive than 0755, this is a finding. |
Fix Text (F-26900r1_fix) |
---|
Change the mode of included xinetd configuration directories to 0755. Procedure: # chmod 0755 |