CCE-92114-8| Platform: Amazon Linux | Date: (C)2018-10-29 (M)2022-10-10 |
Disable rexec Service
The 'rexec' service, which is available with
the 'rsh-server' package and runs as a service through xinetd,
should be disabled.
The 'rexec' service can be disabled with the following command:
'$ sudo systemctl disable rexec'
Parameter:
Technical Mechanism:
The rexec service uses unencrypted network communications, which
means that data from the login session, including passwords and
all other information transmitted during the session, can be
stolen by eavesdroppers on the network.
Fix:
No Remediation Info
| CCSS Severity: | CCSS Metrics: |
| CCSS Score : | Attack Vector: |
| Exploit Score: | Attack Complexity: |
| Impact Score: | Privileges Required: |
| Severity: | User Interaction: |
| Vector: | Scope: |
| | Confidentiality: |
| | Integrity: |
| | Availability: |
| | |
References: | Resource Id | Reference |
|---|
| SCAP Repo OVAL Definition | oval:org.secpod.oval:def:48301 |
| SCAP Repo OVAL Definition | oval:org.secpod.oval:def:48754 |
| SCAP Repo OVAL Definition | oval:org.secpod.oval:def:48301 |
