Remote Shell (RSH) and related services are not disabled
Description
Legacy services such as rsh (remote shell) , rlogin (remote login) , rexec (remote execution) exchange credentials in clear-text. These are superseded by SSH (Secure shell). Fixing this misconfiguration will disable RSH and related services.
Severity
important
Category
Linux - Insecure Services
Resolution
Follow the below steps to resolve the misconfiguration.
Comment out or remove any lines starting with shell , login , or exec from
/etc/inetd.conf and /etc/inetd.d/* .
Set disable = yes on all rsh , rlogin , and rexec services in /etc/xinetd.conf and
/etc/xinetd.d/* .
Potential issues that may arise after applying the resolution
Altering the existing security setting may create the following impact in your network operations. Legacy protocols are present to support operations of legacy applications and services. Disabling them would cause those applications to stop functioning.
Does remediation require reboot?
No
Vulnerability Manager Plus tracks security configurations and remediate misconfigurations in your network systems from a centralized console. View a list of all the security misconfigurations detected by Vulnerability Manager Plus.
