STIGQter STIGQter: STIG Summary: IBM AIX 7.x Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 23 Apr 2021:

The time daemon must be disabled on AIX.

DISA Rule

SV-215373r508663_rule

Vulnerability Number

V-215373

Group Title

SRG-OS-000095-GPOS-00049

Rule Version

AIX7-00-003068

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

In "/etc/inetd.conf", comment out the "time" entries by running commands:
# chsubserver -r inetd -C /etc/inetd.conf -d -v 'time' -p 'udp'
# chsubserver -r inetd -C /etc/inetd.conf -d -v 'time' -p 'tcp'

Restart inetd:
# refresh -s inetd

Check Contents

From the command prompt, execute the following command:
# grep "^time[[:blank:]]" /etc/inetd.conf

If there is any output from the command, this is a finding.

Vulnerability Number

V-215373

Documentable

False

Rule Version

AIX7-00-003068

Severity Override Guidance

From the command prompt, execute the following command:
# grep "^time[[:blank:]]" /etc/inetd.conf

If there is any output from the command, this is a finding.

Check Content Reference

M

Target Key

4012

Comments