Skip to content

Disable Apache Qpid (qpidd)

An XCCDF Rule

Description

The qpidd service provides high speed, secure, guaranteed delivery services. It is an implementation of the Advanced Message Queuing Protocol. By default the qpidd service will bind to port 5672 and listen for connection attempts. The qpidd service can be disabled with the following command:

$ sudo systemctl mask --now qpidd.service

Rationale

The qpidd service is automatically installed when the base package selection is selected during installation. The qpidd service listens for network connections, which increases the attack surface of the system. If the system is not intended to receive AMQP traffic, then the qpidd service is not needed and should be disabled or removed.

ID
xccdf_org.ssgproject.content_rule_service_qpidd_disabled
Severity
Low
References
Updated



Remediation - OS Build Blueprint


[customizations.services]
disabled = ["qpidd"]

Remediation - Ansible

- name: Block Disable service qpidd
  block:

  - name: Disable service qpidd
    block:


Remediation - Puppet

include disable_qpidd

class disable_qpidd {
  service {'qpidd':
    enable => false,
    ensure => 'stopped',