Redis Enterprise DBMS must disable network functions, ports, protocols, and services deemed by the organization to be nonsecure, in accord with the Ports, Protocols, and Services Management (PPSM) guidance.

An XCCDF Rule

Description

<VulnDiscussion>Use of nonsecure network functions, ports, protocols, and services exposes the system to avoidable threats.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID: SV-251215r961470_rule
Severity: Medium
References: CCI-001762
Updated: 17 days ago

Use firewalld commands to remove any unnecessary ports from the appropriate zone. To do this, enter the following commands as root.

This command will immediately remove a port from the configuration:
$ firewall-cmd --zone=<zone> --remove-port=<port>/<protocol>

This command will persistently remove a port from a configuration:$ firewall-cmd --permanent --zone=<zone> --remove-port=<port>/<protocol>

Repeat the previous commands for any port that is unauthorized for use or is not used.

Redis Enterprise DBMS must disable network functions, ports, protocols, and services deemed by the organization to be nonsecure, in accord with the Ports, Protocols, and Services Management (PPSM) guidance.

Description

Remediation - Manual Procedure