Remove rsh-server

Details

The Berkeley rsh-server (rsh, rlogin, rcp) package contains legacy services that exchange credentials in clear-text.

Rationale:

These legacy service contain numerous security exposures and have been replaced with the more secure SSH package.

Solution

Run the following command to remove rsh-server:

# yum erase rsh-server

Default Value:

OS Default: Not Installed

Supportive Information

The following resource is also helpful.

https://workbench.cisecurity.org/files/3096

This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system Unix.

References

800-53|CM-11
CSCv7|2.6

Source

Tenable.com/audits

Updated on July 16, 2022

Was this article helpful?

Yes No

Details

Solution

Supportive Information

References

Source

Related Articles