OpenControls Logo

STIG Viewer

Systems services that are not required must be disabled.

Overview

Finding IDVersionRule IDIA ControlsSeverity
V-216082SOL-11.1-030040SV-216082r959010_ruleCCI-000366low
Description
Services that are enabled but not required by the mission may provide excessive access or additional attack vectors to penetrate the system.
STIGDate
Solaris 11 X86 Security Technical Implementation Guide2025-05-05

Related Frameworks

4 paths across 3 frameworks
NIST 800-531 mapping
CM-6
1.00
  • DISA · 3 · disa_xccdf · related
  • DISA · 2025-01-23 · disa_cci_list · equivalent
NIST 800-1712 mappings
3.4.1
1.00
  • DISA · 3 · disa_xccdf · related
  • DISA · 2025-01-23 · disa_cci_list · equivalent
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
3.4.2
1.00
  • DISA · 3 · disa_xccdf · related
  • DISA · 2025-01-23 · disa_cci_list · equivalent
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
CCI1 mapping
CCI-000366
1.00
  • DISA · 3 · disa_xccdf · related

Details

Check Text (C-216082r959010_chk)

Determine all of the systems services that are enabled on the system. # svcs -a | grep online Document all enabled services and disable any that are not required.

Fix Text (F-17318r372629_fix)

The Service Management profile is required: Disable any other service not required. # pfexec svcadm disable [service name]