- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- disbale email server cis security
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-22-2018 07:05 AM
02-22-2018 07:05 AM
disbale email server cis security
Hi Guys,
Can someone help i'm trying to harden my server to disable the email server from cis security script below
ch_rc -a -p SENDMAIL_SERVER=0 /etc/rc.config.d/mailservs cd /var/spool/cron/crontabscrontab -l >root.tmpecho '0 * * * * /usr/lib/sendmail -q' >>root.tmpcrontab root.tmprm -f root.tmp
but after running the script, the parameter still fail. Please help
Regards
VIncent
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-22-2018 01:32 PM
02-22-2018 01:32 PM
Re: disbale email server cis security
To turn off sendmail run:
# /sbin/init.d/sendmail stop
Now go to the /etc/rc.config.d directory and manually edit the 'mailservs' file.
# cd /etc/rc.config.d
# vi mailservs
Change the line that has:
SENDMAIL_SERVER=1
to
SENDMAIL_SERVER=0
Now save the file and exit.
Your server can not receive mail now.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-23-2018 07:05 PM
02-23-2018 07:05 PM
Re: disbale email server cis security
Thanks for the support, I hv already disable the mailservs and set to 0. But the cis assessment still fail. Kindly help
Regards
Vincent
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-23-2018 07:07 PM
02-23-2018 07:07 PM
Re: disbale email server cis security
Btw, can anyone advice what is the cis script trying to check which I don't understand . Pls revert thanks
Regards
Vincent
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-23-2018 07:48 PM
02-23-2018 07:48 PM
Re: disbale email server cis security
Is the sendmail daemon still running?
# ps -ef | grep sendmail
If it is, then you may just need to stop the daemon.
I've not seen the CIS script to know what it's checking. You've got it. Go through it and see what it's looking for, if it is actually a script and not a program.