Detections
Analytics

4.6.1.6 Ensure CDE remote GUI login is disabled

Information

The XDMCP service allows remote systems to start local X login sessions.

The XDMCP service should be disabled unless there is a requirement to allow remote X servers to start login sessions. If the ability to host remote X servers is not required, disable the service.

Solution

Copy /usr/dt/config/Xconfig to /etc/dt/config if it does not already exist:

ls -l /etc/dt/config/Xconfig

If the file does not exist, create it:

mkdir -p /etc/dt/config
cp /usr/dt/config/Xconfig /etc/dt/config

Disable remote X sessions from being started:

vi /etc/dt/config/Xconfig

Replace:

# Dtlogin.requestPort: 0

With:

Dtlogin.requestPort: 0

See Also

https://workbench.cisecurity.org/benchmarks/19066

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6, 800-53|CM-7, CSCv7|9.2

Plugin: Unix

Control ID: 22fcc7ec76b3bdea4756d7f59ca46daa8dc7ac49516f6693b8c56027d5dfc775