2.2.20 Ensure rsync service is not enabled (Scored)
Profile Applicability
Level 1 - Server Level 1 - Workstation
Description
The rsyncd
service can be used to synchronize files between systems over network links.
Rationale
The rsyncd
service presents a security risk as it uses unencrypted protocols for communication.
Audit
Run the following command to verify rsyncd
is not enabled:
# systemctl is-enabled rsync d disabled
Verify result is not “enabled”.
Remediation
Run the following command to disable rsyncd
:
# systemctl disable rsyncd