2.2.6 Ensure RPC is not enabled

Information

The Remote Procedure Call Binding Server (rpcbind) provides the ability for applications to do remote procedure call through the network.

Rationale:

If the system does not make use of remote procedure call, it is recommended that this service be disabled to reduce the remote attack surface.

Solution

Run the following commands to disable rpcbind:

# systemctl --now disable rpcbind

Additional Information:

Additional methods of disabling a service exist. Consult your distribution documentation for appropriate methods.

See Also

https://workbench.cisecurity.org/files/2970

Item Details

Category: SYSTEM AND INFORMATION INTEGRITY

References: 800-53|SI-4, CSCv7|9.2

Plugin: Unix

Control ID: 4b419551740090547ae3d9817c6f8c37b0631776c71f3116ea1d6d1ddee1d7cd