Uninstall rsync Package

An XCCDF Rule

Description

The rsyncd service can be used to synchronize files between systems over network links. The rsync-daemon package can be removed with the following command:

$ sudo yum erase rsync-daemon

Rationale

The rsyncd service presents a security risk as it uses unencrypted protocols for communication.

ID: xccdf_org.ssgproject.content_rule_package_rsync_removed
Severity: Medium
References: 2.2.13
Updated: about 1 year ago

- name: Ensure rsync-daemon is removed
  package:
    name: rsync-daemon
    state: absent
  tags:
  - disable_strategy  - low_complexity
  - low_disruption
  - medium_severity
  - no_reboot_needed
  - package_rsync_removed

include remove_rsync-daemon

class remove_rsync-daemon {
  package { 'rsync-daemon':
    ensure => 'purged',
  }}


# CAUTION: This remediation script will remove rsync-daemon
#	   from the system, and may remove any packages
#	   that depend on rsync-daemon. Execute this
#	   remediation AFTER testing on a non-production
#	   system!
if rpm -q --quiet "rsync-daemon" ; then

    yum remove -y "rsync-daemon"

fi


package --remove=rsync-daemon

Uninstall rsync Package

Description

Rationale

Remediation - Ansible

Remediation - Puppet

Remediation - Shell Script

Remediation - Anaconda Pre-Install Instructions