2.2.16 Ensure rsync service is not enabled (Scored)
Profile Applicability
Level 1 - Server Level 1 - Workstation
Description
The rsyncd service can be used to synchronize files between systems over network links.
Rationale
The rsyncd service presents a security risk as it uses unencrypted protocols for communication.
Audit
Run the following command to verify rsync is not enabled:
# systemctl is-enabled rsync disabled
Verify result is not “enabled”.
Remediation
Run the following command to disable rsync:
# systemctl disable rsync
Piotr Kłoczewski
