====== 2.1.3 Ensure discard services are not enabled (Scored)======
=====Profile Applicability=====  
<code>
Level 1 - Server 
Level 1 - Workstation
</code>

=====Description=====
''discard'' is a network service that simply discards all data it receives. This service is intended for debugging and testing purposes. It is recommended that this service be disabled.

=====Rationale=====
Disabling this service will reduce the remote attack surface of the system.

=====Audit===== 
Verify the ''discard'' service is not enabled. Run the following command and verify results are as indicated: 
<Code:bash>
grep -R "^discard" /etc/inetd.*
</Code>
No results should be returned \\ \\
check ''/etc/xinetd.conf'' and ''/etc/xinetd.d/*'' and verify all ''discard'' services have ''disable = yes'' set.

=====Remediation===== 
Comment out or remove any lines starting with ''discard'' from ''/etc/inetd.conf'' and ''/etc/inetd.d/*''.\\
Set ''disable = yes'' on all ''discard'' services in ''/etc/xinetd.conf'' and ''/etc/xinetd.d/*''.