Level 1 - Server Level 1 - Workstation
discard is a network service that simply discards all data it receives. This service is intended for debugging and testing purposes. It is recommended that this service be disabled.
Disabling this service will reduce the remote attack surface of the system.
Verify the discard service is not enabled. Run the following command and verify results are as indicated:
grep -R "^discard" /etc/inetd.*
No results should be returned
check /etc/xinetd.conf and /etc/xinetd.d/* and verify all discard services have disable = yes set.
Comment out or remove any lines starting with discard from /etc/inetd.conf and /etc/inetd.d/*.
Set disable = yes on all discard services in /etc/xinetd.conf and /etc/xinetd.d/*.