3.5.4 Ensure TIPC is disabled (Not Scored)

Level 1 - Server
Level 1 - Workstation 

The Transparent Inter-Process Communication (TIPC) protocol is designed to provide communication between cluster nodes.

If the protocol is not being used, it is recommended that kernel module not be loaded, disabling the service to reduce the potential attack surface.

Run the following commands and verify the output is as indicated:

# modprobe -n -v tipc
install /bin/true 
# lsmod | grep tipc
<No output>

Edit or create the file /etc/modprobe.d/CIS.conf and add the following line:

install tipc /bin/true
  • centos7/3/5/4.txt
  • Last modified: 2017/05/04 17:33
  • by