GEN003820 - The rsh daemon must not be running.

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

The rshd process provides a typically unencrypted, host-authenticated remote access service. SSH should be used in place of this service.


Satisfies: SRG-OS-000505, SRG-OS-000555, SRG-OS-000033

Solution

Disable the remote shell service and restart inetd.
Procedure:
# svcadm disable network/shell
# svcadm refresh inetd

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_SOL_10_x86_V2R2_STIG.zip

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-7, CAT|I, CCI|CCI-000068, CSCv6|9.1, Rule-ID|SV-220092r603266_rule, STIG-ID|GEN003820, STIG-Legacy|SV-27435, STIG-Legacy|V-4687, Vuln-ID|V-220092

Plugin: Unix

Control ID: 79b1e8cea08ed319dcf501c1e47c868069992908c82d2a3636ccb4a8814f39d0