If there are no X11 clients that require CDE on AIX, the dt service must be disabled.
An XCCDF Rule
Description
This entry executes the CDE startup script which starts the AIX Common Desktop Environment. To prevent attacks this daemon should not be enabled unless there is no alternative.
- ID
- SV-215351r958478_rule
- Version
- AIX7-00-003045
- Severity
- Medium
- References
- Updated
Remediation Templates
A Manual Procedure
In "/etc/inittab", remove the "dt" entry by running the following command:
# rmitab dt
To request the init command to re-examine the "/etc/inittab" file, enter:
# telinit q