If AIX server is not functioning as a DNS server, the named daemon must be disabled.
An XCCDF Rule
Description
This is the server for the DNS protocol and controls domain name resolution for its clients. To prevent attacks this daemon should not be enabled unless there is no alternative.
- ID
- SV-215360r958478_rule
- Version
- AIX7-00-003054
- Severity
- Medium
- References
- Updated
Remediation Templates
A Manual Procedure
In "/etc/rc.tcpip", comment out the "named" entry by running command:
# chrctcp -d named