Skip to content

Commit

Permalink
Expand the rsh description
Browse files Browse the repository at this point in the history 
Signed-off-by: Tim Smith <[email protected]>
  • Loading branch information
@tas50
tas50 committed Nov 17, 2024
1 parent ccb58d2 commit 2ec91e5
Showing 1 changed file with 4 additions and 1 deletion.
5 changes: 4 additions & 1 deletion core/mondoo-linux-security.mql.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -746,7 +746,10 @@ queries:
service("rlogin.socket").running == false
service("rexec.socket").running == false
docs:
desc: The Berkeley `rsh-server` ( `rsh`, `rlogin`, `rexec` ) package contains legacy services that exchange credentials in clear-text.
desc: |-
`rsh`, sometimes referred to as Remote Shell, is a command-line client/server suite or tools (rsh, rlogin, and rcp) used to execute commands on a remote machine.

Check warning on line 750 in core/mondoo-linux-security.mql.yaml

View workflow job for this annotation

GitHub Actions / Run spell check 

`rcp` is not a recognized word. (unrecognized-spelling)
`rsh` is inherently insecure because it transmits data, including passwords, in plaintext over the network, making it vulnerable to interception and includes weak host-based authentiction. If possible use more secure commands such as SSH, which encrypt the entire session, ensuring that sensitive information and files remain secure from unauthorized access.

Check warning on line 752 in core/mondoo-linux-security.mql.yaml

View workflow job for this annotation

GitHub Actions / Run spell check 

`authentiction` is not a recognized word. (unrecognized-spelling)
remediation: |-
Run these commands to stop and disable `rsh`, `rlogin`, and `rexec`:
Expand Down

0 comments on commit 2ec91e5

Please sign in to comment.