GEN006400 - The Network Information System (NIS) protocol must not be used.

Information

Due to numerous security vulnerabilities existing within NIS, it must not be used. Possible alternative directory services are NIS+ and LDAP.

Solution

Disable the use of NIS/NIS+. Use as a replacement Kerberos or LDAP.

See Also

http://iasecontent.disa.mil/stigs/zip/U_RedHat_5_V1R18_STIG.zip

Item Details

Audit Name: DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit

Category: ACCESS CONTROL

References: 800-53|AC-17(8), CAT|II, CCI|CCI-001435, Group-ID|V-867, Rule-ID|SV-37742r1_rule, STIG-ID|GEN006400, Vuln-ID|V-867

Plugin: Unix

Control ID: 8136f40ed99bd09b233dd2eb606c068d857de3400b9ed926173c40d402f3b2ea