Detections
Analytics
GEN009220 - The system must not have the dtspc service active.
Information
This service is started automatically by the inetd daemon with root permission in response to a CDE client requesting a process to be started on the daemon's host system. Running the dtscp service is unnecessary and it increases the attack vector of the system.Solution
Edit /etc/inetd.conf and comment out dtspc service line.Restart the inetd service.
# refresh -s inetd
See Also
http://iasecontent.disa.mil/stigs/zip/U_STIG_Library_2015_07.zip
Item Details
Audit Name: DISA AIX 5.3 STIG v1r2
Category: CONFIGURATION MANAGEMENT
References: 800-53|CM-7, CAT|II, CCI|CCI-001436, Rule-ID|SV-38710r1_rule, STIG-ID|GEN009220, Vuln-ID|V-29506
Plugin: Unix
Control ID: c6545c88d80daccb76ff97393bef9cb8aa9f3fcdfbd6fd42ad7bca9f6c81c91d