3.3.39 /etc/inetd.conf - echo

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

This entry starts the echo service when required. This service sends back data received by it on a specified port.

The echo service sends back data received by it on a specified port. This can be misused by an attacker to launch DoS attacks or Smurf attacks by initiating a data storm and causing network congestion. The service is used for testing purposes and therefore must be disabled if not required.

Solution

In /etc/inetd.conf, comment out the echo entries-

chsubserver -r inetd -C /etc/inetd.conf -d -v 'echo' -p 'tcp'

See Also

https://workbench.cisecurity.org/files/528