GEN003835 - The rlogind service must not be installed.

Information

The rlogind process provides a typically unencrypted, host-authenticated remote access service. SSH should be used in place of this service.

Solution

Remove the rsh-server package.

Procedure:
# rpm -e rsh-server

See Also

http://iasecontent.disa.mil/stigs/zip/U_RedHat_5_V1R18_STIG.zip

Item Details

Audit Name: DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-7, CAT|II, CCI|CCI-000305, Group-ID|V-22433, Rule-ID|SV-26669r1_rule, STIG-ID|GEN003835, Vuln-ID|V-22433

Plugin: Unix

Control ID: 10e0e5ae05b55314d46dbd6d5a2a461117c528f33b180da6f9d8e10668fc2ddf