2.1.1 Ensure xinetd is not installed

Information

The eXtended InterNET Daemon ( xinetd ) is an open source super daemon that replaced the original inetd daemon. The xinetd daemon listens for well known services and dispatches the appropriate daemon to properly respond to service requests.

If there are no xinetd services required, it is recommended that the package be removed to reduce the attack surface are of the system.

Note: If an xinetd service or services are required, ensure that any xinetd service not required is stopped and disabled

Solution

Run the following command to remove xinetd :

# zypper remove xinetd

See Also

https://workbench.cisecurity.org/benchmarks/8498

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6, 800-53|CM-7, CSCv7|2.6, CSCv7|9.2

Plugin: Unix

Control ID: 174925fb5197f024d2304f569d8775758343223dea30d9c36747a27cc2333b19