AIX

AIX

Connect with fellow AIX users and experts to gain knowledge, share insights, and solve problems.

 View Only
Back to discussions
Expand all | Collapse all

Disable portmapper chrctcp AIX 6100-06-03-1048

  • 1.  Disable portmapper chrctcp AIX 6100-06-03-1048

    Posted Wed August 10, 2011 10:34 AM

    Originally posted by: MatthewBourne


    Hi

    Anyone tried implementing the recommendations in the CIS benchmarks for AIX6.1 (Dec 2010) to disable the portmapper using "chrctcp" ?

    Command syntax provided in the benchmark is:

    
chrctcp -d portmap


    this fails silently, looks like it's down to the integration between /sbin/rc.boot and NIM thin clients.

    By contrast:

    
chrctcp -d inetd


    works perfectly well.

    Should be possible to update the file /etc/rc.tcpip directly, but nicer for AIXPERT implementation if it can be done using a command.

    My guess is that the command chrctcp, being undocumented, is therefore unsupported; but I can pursue that in a separate stream.

    There is an acknowledged IBM contribution in the benchmark, so I'd (reasonably?) assumed that all the AIX-specfic stuff had been tested and shown to work ...

    TIA

    M.


  • 2.  Re: Disable portmapper chrctcp AIX 6100-06-03-1048

    Posted Thu October 18, 2012 11:45 AM

    Originally posted by: SystemAdmin


    One solution:

     perl -pi -e 's{^}{#} if m{^
^#*start\s+/.*bin/portmap}' /etc/rc.tcpip


Related Content