| VID |
11003 |
| Severity |
20 |
| Port |
15 |
| Protocol |
TCP |
| Class |
Info |
| Detailed Description |
The "netstat" service provides useful informations to crackers, since it gives away the state of the active connections. It is recommanded that you get rid of it. |
| Recommendation |
comment out the "netstat" line in /etc/inetd.conf and revoke 'inetd' daemon.
*Enterprise Linux 6.4, CentOS 6.4, Fedora 19:
Open /etc/xinetd.d/netstat and set disable=yes
and then restart xinetd
OR
# service netstat stop |
| Related URL |
CVE-1999-0650 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
