STIGhubSTIGhub
STIGsRMF ControlsCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • RMF Controls
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 1 hour ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to IBM AIX 7.x Security Technical Implementation Guide

V-215353

CAT II (Medium)

If sendmail is not required on AIX, the sendmail service must be disabled.

Rule ID

SV-215353r958478_rule

STIG

IBM AIX 7.x Security Technical Implementation Guide

Version

V3R2

CCIs

CCI-000381

Discussion

The sendmail service has many historical vulnerabilities and, where possible, should be disabled. If the system is not required to operate as a mail server i.e. sending, receiving or processing e-mail, disable the sendmail daemon.

Check Content

From the command prompt, execute the following command: 
# grep "^start[[:blank:]]/usr/lib/sendmail" /etc/rc.tcpip

If the above command produces any output, this is a finding.

Fix Text

In "/etc/rc.tcpip", comment out the "sendmail" entry by running command: 
# chrctcp -d sendmail