Skip to content

Audit#

Run the following command to verify xinetd package is not installed:

dpkg-query -s xinetd &>/dev/null && echo "xinetd is installed"#

Nothing should be returned.

**- OR -**
**- IF -** the **xinetd** package is required as a dependency:
Run the following command to verify **xinetd.service** is not enabled:
```bash
# systemctl is-enabled xinetd.service 2>/dev/null | grep 'enabled'
Nothing should be returned.

Run the following command to verify xinetd.service is not active: 

# systemctl is-active xinetd.service 2>/dev/null | grep '^active'
Nothing should be returned.

Note: If the package is required for a dependency - Ensure the dependent package is approved by local site policy - Ensure stopping and masking the service and/or socket meets local site policy

Remediation#

Run the following commands to stop xinetd.service, and remove xinetd package: 

# systemctl stop xinetd.service
# apt purge xinetd

- OR - - IF - the xinetd package is required as a dependency: Run the following commands to stop and mask the xinetd.service: 

# systemctl stop xinetd.service
# systemctl mask xinetd.service