The AIX rlogind service must be disabled.

An XCCDF Rule

Details
Profiles
Prose

Description

<VulnDiscussion>The rlogin daemon permits username and passwords to be passed over the network in clear text.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID: SV-215347r987796_rule
Severity: High
References: CCI-000197
Updated: 17 days ago

Disable the rlogind service by editing the "'etc/inetd.conf" file. 

# vi /etc/inetd.conf 

Comment out the "rlogind" service. 
Restart the inetd service: 
# refresh -s inetd

The AIX rlogind service must be disabled.

Description

Remediation - Manual Procedure