Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-239537 | VROM-SL-000590 | SV-239537r662062_rule | Medium |
Description |
---|
The HELP command should be disabled to mask version information. The version of the SMTP service software could be used by attackers to target vulnerabilities present in specific software versions. |
STIG | Date |
---|---|
VMware vRealize Operations Manager 6.x SLES Security Technical Implementation Guide | 2023-09-21 |
Check Text ( C-42770r662060_chk ) |
---|
Check the permissions of the sendmail helpfile: ls -al /usr/lib/sendmail.d/helpfile If the permissions are not "0000", this is a finding. |
Fix Text (F-42729r662061_fix) |
---|
Run the following command to disable the sendmail helpfile: # chmod 0000 /usr/lib/sendmail.d/helpfile |