3.4.3 Ensure /etc/hosts.deny is configured

Information

The /etc/hosts.deny file serves as a failsafe so that any host not specified in /etc/hosts.allow is denied access to the system.

Solution

Run the following command to create /etc/hosts.deny: # echo 'ALL: ALL' >> /etc/hosts.deny

See Also

https://workbench.cisecurity.org/files/1863

Item Details

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-7(5), CSCv6|9.2

Plugin: Unix

Control ID: 36d99f5fdb3f9891fb8f0c417198dd8084d64ee5bcab59bcdbb0d80e3a91b080