The AIX rlogind service must be disabled.

An XCCDF Rule

Description

The rlogin daemon permits username and passwords to be passed over the network in clear text.

ID: SV-215347r987796_rule
Version: AIX7-00-003041
Severity: High
References: CCI-000197
Updated: 7 days ago

Remediation Templates

Disable the rlogind service by editing the "'etc/inetd.conf" file. 

# vi /etc/inetd.conf 

Comment out the "rlogind" service. 
Restart the inetd service: 
# refresh -s inetd