GEN003840 - The rexec daemon must not be running.

Information

The rexecd process provides a typically unencrypted, host-authenticated remote access service. SSH should be used in place of this service.

Solution

Edit /etc/xinetd.d/rexec and set 'disable=yes'

See Also

http://iasecontent.disa.mil/stigs/zip/U_RedHat_5_V1R18_STIG.zip

Item Details

Audit Name: DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit

Category: ACCESS CONTROL

References: 800-53|AC-17(8), CAT|I, CCI|CCI-001435, Group-ID|V-4688, Rule-ID|SV-37443r1_rule, STIG-ID|GEN003840, Vuln-ID|V-4688

Plugin: Unix

Control ID: faa4b1d1e0091fffcdb3749b4bb0152674e6fd7eff155d216e402dafc62d7638