The rstatd daemon must be disabled on AIX.

An XCCDF Rule

Details
Profiles
Prose

Description

<VulnDiscussion>The rstatd service is used to provide kernel statistics and other monitorable parameters pertinent to the system such as: CPU usage, system uptime, network usage etc. An attacker may use this information in a DoS attack. This service should be disabled.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID: SV-215380r958478_rule
Severity: Medium
References: CCI-000381
Updated: 17 days ago

In "/etc/inetd.conf", comment out the "rstatd" entry by running command: 
# chsubserver -r inetd -C /etc/inetd.conf -d -v 'rstatd' -p 'udp'

Restart inetd:
# refresh -s inetd

The rstatd daemon must be disabled on AIX.

Description

Remediation - Manual Procedure