STIGQter: STIG Summary: Oracle Linux 6 Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021: STIGQter: STIG Summary: Oracle Linux 6 Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:SV-208941r603263_rule
V-208941
SRG-OS-000096
OL6-00-000267
CAT III
10
The "qpidd" service provides high speed, secure, guaranteed delivery services. It is an implementation of the Advanced Message Queuing Protocol. By default the qpidd service will bind to port 5672 and listen for connection attempts. The "qpidd" service can be disabled with the following commands:
# chkconfig qpidd off
# service qpidd stop
To check that the "qpidd" service is disabled in system boot configuration, run the following command:
# chkconfig "qpidd" --list
Output should indicate the "qpidd" service has either not been installed, or has been disabled at all runlevels, as shown in the example below:
# chkconfig "qpidd" --list
"qpidd" 0:off 1:off 2:off 3:off 4:off 5:off 6:off
Run the following command to verify "qpidd" is disabled through current runtime configuration:
# service qpidd status
If the service is disabled the command will return the following output:
qpidd is stopped
If the service is running, this is a finding.
V-208941
False
OL6-00-000267
To check that the "qpidd" service is disabled in system boot configuration, run the following command:
# chkconfig "qpidd" --list
Output should indicate the "qpidd" service has either not been installed, or has been disabled at all runlevels, as shown in the example below:
# chkconfig "qpidd" --list
"qpidd" 0:off 1:off 2:off 3:off 4:off 5:off 6:off
Run the following command to verify "qpidd" is disabled through current runtime configuration:
# service qpidd status
If the service is disabled the command will return the following output:
qpidd is stopped
If the service is running, this is a finding.
M
2928