2.1.7 Ensure talk server is not enabled - 'talk'

Information

The talk software makes it possible for users to send and receive messages across systems through a terminal session. The talk client (allows initiate of talk sessions) is installed by default. The software presents a security risk as it uses unencrypted protocols for communication.

Solution

Comment out or remove any lines starting with talk or ntalk from /etc/inetd.conf and /etc/inetd.d/*. Set disable = yes on all talk services in /etc/xinetd.conf and /etc/xinetd.d/*.

See Also

https://workbench.cisecurity.org/files/1866

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-7b., CSCv6|9.1

Plugin: Unix

Control ID: 1e2c7e4268db0bebcf5925e1ec10993a0715665a6b594bd61cacdcebe11536a3