The Internet Network News (INN) server must be disabled on AIX.

An XCCDF Rule

Description

<VulnDiscussion>Internet Network News (INN) servers access Usenet newsfeeds and store newsgroup articles. INN servers use the Network News Transfer Protocol (NNTP) to transfer information from the Usenet to the server and from the server to authorized remote hosts. If this function is necessary to support a valid mission requirement, its use must be authorized and approved in the system accreditation package.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID: SV-215392r958478_rule
Severity: Medium
References: CCI-000381
Updated: 17 days ago

To stop "innd" or "nntpd" from running, use the following commands:
# stopsrc -s innd
# stopsrc -s nntpd

Some versions of "innd" and "nntpd" need the following commands to stop them: 
# kill -1 [innd_pid]# kill -1 [nntpd_pid]

To remove "innd" and 'nntpd" from SRC, run the following commands:
# rmssys -s innd
# rmssys -s nntpd

To stop running "innd" and "nntpd" from "/etc/inetd.conf", comment out the "innd" and "nntpd" lines in "/etc/inetd.conf", then refresh the "inetd":
# refresh -s inetd

The Internet Network News (INN) server must be disabled on AIX.

Description

Remediation - Manual Procedure