Free DISA STIG and SRG Library | Vaulted
Removed

V-1011

Inetd or xinetd logging/tracing must be enabled.

Finding ID
GEN003800
Rule ID
SV-35085r1_rule
Severity
Cat III
CCE
(None)
Group Title
GEN003800
CCI
CCI-000134
Target Key
(None)
Documentable
No
Discussion

Inetd or xinetd logging and tracing allows the system administrators to observe the IP addresses connecting to their machines and to observe what network services are being sought. This provides valuable information when trying to find the source of malicious users and potential malicious users.

Fix Text

Edit the (x)inetd startup script to include the -l parameter for the internet daemon process.

Check Content

# ps -ef | grep -v grep | egrep -i "inetd|xinetd" If the -l logging parameter is not used, this is a finding. If the (x)inetd process is not running, this is not a finding.

Responsibility

System Administrator

IA Controls

ECSC-1