GEN003800 - Inetd or xinetd logging/tracing must be enabled.

Information

Inetd or xinetd logging and tracing allows the system administrators to observe the IP addresses that are connecting to their machines and to observe what network services are being sought. This provides valuable information when trying to find the source of malicious users and potential malicious users.

Solution

Edit the inetd startup script to contain the '-d' parameter for the inetd process.

#vi /etc/rc.tcpip

# chssys -s inetd -a '-d'

See Also

https://iasecontent.disa.mil/stigs/zip/U_AIX_6-1_V1R14_STIG.zip

Item Details

Category: AUDIT AND ACCOUNTABILITY

References: 800-53|AU-3, CAT|III, CCI|CCI-000134, Group-ID|V-1011, Rule-ID|SV-38951r1_rule, STIG-ID|GEN003800, Vuln-ID|V-1011

Plugin: Unix

Control ID: 9136f74b703126ca739f463ce9aeaa42cf8b56c5f9ebd18fb66b19cd5dabfc42