Detections
Analytics
GEN009190 - The system must not have the comsat service active.
Information
The comsat daemon notifies users on incoming email. This is an unnecessary service and is vulnerable to a flood attack. Running unnecessary services increases the attack vector of the system.Solution
Edit /etc/inetd.conf and comment out comsat service line. Restart the inetd service.# refresh -s inetd
See Also
https://iasecontent.disa.mil/stigs/zip/U_AIX_6-1_V1R14_STIG.zip
Item Details
Audit Name: DISA STIG AIX 6.1 v1r14
Category: ACCESS CONTROL
References: 800-53|AC-17(8), CAT|II, CCI|CCI-001436, Group-ID|V-29503, Rule-ID|SV-38707r1_rule, STIG-ID|GEN009190, Vuln-ID|V-29503
Plugin: Unix
Control ID: 1f4a45b9aa5350dc07f5809ab12224ab41d2c8e3eb1db57fa7601929620fd748