4.1.2.9 mrouted

Information

This entry starts the mrouted daemon on system startup. This daemon is an implementation of the multicast routing protocol.

Rationale:

The mrouted daemon is an implementation of the multicast routing protocol. The recommendation is to only permit this service when there is a documented need for the service.

The assumption of this recommendation is that the service is not needed - and the audit and remediation are written to disable the service (it's default setting).

Impact:

When this service's need is documented (include with assessment report) the audit and remediation for this service may be skipped.

The CIS controls are to disable unneeded software. When needed it's usage must be allowed.

Solution

In /etc/rc.tcpip, comment out the mrouted entry and stop a running service:

chrctcp -d mrouted
stopsrc -s mrouted

Default Value:

Disabled

See Also

https://workbench.cisecurity.org/benchmarks/7851