2.1.1 Ensure chargen services are not enabled (Scored)

Level 1 - Server 
Level 1 - Workstation

chargen is a network service that responds with 0 to 512 ASCII characters for each connection it receives. This service is intended for debugging and testing purposes. It is recommended that this service be disabled.

Disabling this service will reduce the remote attack surface of the system.

Verify the chargen service is not enabled. Run the following command and verify results are as indicated:

grep -R "^chargen" /etc/inetd.*

No results should be returned

check /etc/xinetd.conf and /etc/xinetd.d/* and verify all chargen services have disable = yes set.

Comment out or remove any lines starting with chargen from /etc/inetd.conf and /etc/inetd.d/*. Set disable = yes on all chargen services in /etc/xinetd.conf and /etc/xinetd.d/*.

  • ubuntu1604/2/1/1.txt
  • Last modified: 2017/05/02 10:10
  • by