The dtspc daemon must be disabled on AIX.
An XCCDF Rule
Description
The dtspc service deals with the CDE interface of the X11 daemon. It is started automatically by the inetd daemon in response to a CDE client requesting a process to be started on the daemon's host. This makes it vulnerable to buffer overflow attacks, which may allow an attacker to gain root privileges on a host. This service must be disabled unless it is absolutely required.
- ID
- SV-215378r958478_rule
- Version
- AIX7-00-003073
- Severity
- Medium
- References
- Updated
Remediation Templates
A Manual Procedure
In "/etc/inetd.conf", comment out the "dtspc" entry by running command:
# chsubserver -r inetd -C /etc/inetd.conf -d -v 'dtspc' -p 'tcp'
Restart inetd:
# refresh -s inetd