SOL-11.1-020170 - The rpcbind service must be configured for local only services unless organizationally defined.

Information

The portmap and rpcbind services increase the attack surface of the system and should only be used when needed. The portmap or rpcbind services are used by a variety of services using remote procedure calls (RPCs). The organization may define and document the limited use of services (for example NFS) that may use these services with approval from their Authorizing Official.

Solution

The Service Management profile is required.

If services such as portmap or rpcbind are required for system operations, the operator must document the services used and obtain approval from their Authorizing Official. They should also document the method(s) of blocking all other remote accesses through tools like a firewall or tcp_wrappers.
Otherwise, configure the rpc/bind service for local only access.

# svccfg -s network/rpc/bind setprop config/local_only=true

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_SOL_11_SPARC_V3R1_STIG.zip

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6b., CAT|II, CCI|CCI-000366, Rule-ID|SV-216294r959010_rule, STIG-ID|SOL-11.1-020170, STIG-Legacy|SV-60791, STIG-Legacy|V-47919, Vuln-ID|V-216294

Plugin: Unix

Control ID: ecbac90faa5d2fbc127cf77390e524afda7b70c26075b6dc5bde32056b20a134