File Alteration Monitor daemon (famd) Detection

low Nessus Plugin ID 18186

Synopsis

A system related service which does not need to be reachable from the network is listening on the remote port.

Description

The File Alteration Monitor daemon (famd) is running on this port. This service does not need to be reachable from the outside, it is therefore recommended that reconfigure it to disable network access.

Solution

Start famd with the '-L' option or edit /etc/fam.conf and set the option 'local_only' to 'true' and restartd the famd service.

Alternatively, you may wish to filter incoming traffic to this port.

Plugin Details

Severity: Low

ID: 18186

File Name: famd_detect.nasl

Version: 1.19

Type: remote

Published: 5/2/2005

Updated: 4/11/2022

Configuration: Enable thorough checks

Asset Inventory: true

Supported Sensors: Nessus

Vulnerability Information

Required KB Items: Settings/ThoroughTests