Uninstall rsync Package
An XCCDF Rule
Description
The rsyncd service can be used to synchronize files between systems over network links.
The rsync
package can be removed with the following command:
$ apt-get remove rsync
Rationale
The rsyncd service presents a security risk as it uses unencrypted protocols for communication.
- ID
- xccdf_org.ssgproject.content_rule_package_rsync_removed
- Severity
- Medium
- References
- Updated
Remediation - Ansible
- name: Ensure rsync is removed
package:
name: rsync
state: absent
tags:
- disable_strategy
Remediation - Puppet
include remove_rsync
class remove_rsync {
package { 'rsync':
ensure => 'purged',
}
Remediation - Shell Script
# CAUTION: This remediation script will remove rsync
# from the system, and may remove any packages
# that depend on rsync. Execute this
# remediation AFTER testing on a non-production
# system!