5.1.4 Ensure talk server is not enabled

Information

The talk software makes it possible for users to send and receive messages across systems through a terminal session. The talk client (allows initiate of talk sessions) is installed by default. The software presents a security risk as it uses unencrypted protocols for communication.

Solution

Remove or comment out any talk or ntalk lines in /etc/inetd.conf- #talk dgram udp wait nobody.tty /usr/sbin/in.talkd in.talkd#ntalk dgram udp wait nobody.tty /usr/sbin/in.ntalkd in.ntalkd

See Also

https://workbench.cisecurity.org/files/85

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-7b., CSCv6|9.1

Plugin: Unix

Control ID: 1f60ae4b57fec317acd0e95241fd0c59d1610539785c66aa35a0afb64a44d214