CCE-92137-9Platform: Amazon Linux | Date: (C)2018-10-29 (M)2022-10-10 |
Disable Apache Qpid (qpidd)
The 'qpidd' service provides high speed, secure,
guaranteed delivery services. It is an implementation of the Advanced Message
Queuing Protocol. By default the qpidd service will bind to port 5672 and
listen for connection attempts.
The 'qpidd' service can be disabled with the following command:
'$ sudo systemctl disable qpidd'
Parameter:
Technical Mechanism:
The qpidd service is automatically installed when the "base"
package selection is selected during installation. The qpidd service listens
for network connections, which increases the attack surface of the system. If
the system is not intended to receive AMQP traffic, then the 'qpidd'
service is not needed and should be disabled or removed.
Fix:
#
# Disable qpidd.service for all systemd targets
#
systemctl disable qpidd.service
#
# Stop qpidd.service if currently running
#
systemctl stop qpidd.service
CCSS Severity: | CCSS Metrics: |
CCSS Score : | Attack Vector: |
Exploit Score: | Attack Complexity: |
Impact Score: | Privileges Required: |
Severity: | User Interaction: |
Vector: | Scope: |
| Confidentiality: |
| Integrity: |
| Availability: |
| |
References: Resource Id | Reference |
---|
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:48324 |
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:48790 |
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:48324 |