AlmaLinux OS 9 must not have the ypserv package installed.

STIG ID: ALMA-09-031150  |  SRG: SRG-OS-000095-GPOS-00049 |  Severity: medium |  CCI: CCI-000381 |  Vulnerability Id: V-269355

Vulnerability Discussion

The NIS service provides an unencrypted authentication service, which does not provide for the confidentiality and integrity of user passwords or the remote session.

Removing the "ypserv" package decreases the risk of the accidental (or intentional) activation of NIS or NIS+ services.

Check

Verify that the ypserv package is not installed with the following command:

$ dnf list --installed ypserv

Error: No matching Packages to list

If the "ypserv" package is installed, this is a finding.

Fix

Remove the nfs-utils package with the following command:

$ dnf remove ypserv
This website is not created by, run, approved, or endorsed by the U.S. Department of Defense. Use at your own risk. This website is created by open-source software.