2.2.20 Ensure rsync service is not enabled (Scored)
Profile Applicability
Level 1 - Server Level 1 - Workstation
Description
The rsyncd service can be used to synchronize files between systems over network links.
Rationale
The rsyncd service presents a security risk as it uses unencrypted protocols for communication.
Audit
Run the following command to verify rsyncd is not enabled:
# systemctl is-enabled rsync d disabled
Verify result is not “enabled”.
Remediation
Run the following command to disable rsyncd:
# systemctl disable rsyncd
Piotr Kłoczewski
