Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
The SMTP service HELP command must not be enabled.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-88545 | VROM-SL-000590 | SV-99195r1_rule | Medium |
| Description |
|---|
| The HELP command should be disabled to mask version information. The version of the SMTP service software could be used by attackers to target vulnerabilities present in specific software versions. |
| STIG | Date |
|---|---|
| VMware vRealize Operations Manager 6.x SLES Security Technical Implementation Guide | 2018-10-11 |
Details
| Check Text ( C-88237r1_chk ) |
|---|
| Check the permissions of the sendmail helpfile: ls -al /usr/lib/sendmail.d/helpfile If the permissions are not "0000", this is a finding. |
| Fix Text (F-95287r1_fix) |
|---|
| Run the following command to disable the sendmail helpfile: # chmod 0000 /usr/lib/sendmail.d/helpfile |