Details

Disabling this service will reduce the remote attack surface of the system.

Solution

Comment out or remove any lines starting with echo from /etc/inetd.conf and /etc/inetd.d/*.
Set disable = yes on all echo services in /etc/xinetd.conf and /etc/xinetd.d/*.

Supportive Information

The following resource is also helpful.

• https://www.cisco.com/c/en/us/td/docs/security/firepower/623/configuration/guide/fpmc-config-guide-v623.htmlhttps://www.cisco.com/c/en/us/td/docs/security/firepower/623/configuration/guide/fpmc-config-guide-v623.html

This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system Unix.

References

• 800-53|CM-7
• CSCv6|9.1

Source

• Tenable.com/audits