2.2.13 Ensure HTTP Proxy Server is not enabled (Scored)
Profile Applicability
Level 1 - Server Level 1 - Workstation
Description
Squid is a standard proxy server used in many distributions and environments.
Rationale
If there is no need for a proxy server, it is recommended that the squid proxy be deleted to reduce the potential attack surface.
Audit
Run the following commands to verify squid
is not enabled:
# systemctl is-enabled squid disabled
Verify result is not “enabled”.
Remediation
Run the following command to disable squid
:
# systemctl disable squid