X25 daemon running

x25 (154) The risk level is classified as LowLow Risk

Description:

An X25 gateway service was detected as running. X25 allows an attacker to possibly gain access using an X.25 network rather than through TCP/IP.

Platforms Affected:

  • Apple, Mac OS
  • Cisco, IOS
  • Compaq, Tru64
  • Data General, DG/UX
  • HP, HP-UX
  • IBM, AIX
  • IBM, OS2
  • Linux, Kernel
  • Microsoft, Windows 2000
  • Microsoft, Windows 2003 Server
  • Microsoft, Windows 95
  • Microsoft, Windows 98
  • Microsoft, Windows 98SE
  • Microsoft, Windows Me
  • Microsoft, Windows NT 4.0
  • Microsoft, Windows XP
  • Novell, NetWare
  • SCO, SCO Unix
  • SGI, IRIX
  • Sun, Solaris
  • Various vendors, Unix
  • WindRiver, BSDOS

Remedy:

Remove or disable the X25 daemon if it is not needed. To remove or disable the X25 daemon:

For Unix:

To disable X25, put # at the beginning of the snmp line in your etc/inetd.conf file (usually located in /etc) and then restart inetd. Refer to your vendor's documentation for more information.

For Windows NT:

  1. Open the Services control panel. (From the Windows NT Start menu, select Settings, Control Panel, Services.)
  2. From the Services list, select the X25 service.
  3. Select one of these choices:
    • To stop the X25 service for this session only, click Stop.
    • To permanently stop the X25 service, click Startup and choose the Disabled option.
  4. Click OK.

For Windows 2000:

  1. Open Control Panel from the Start menu, Settings.
  2. Double-click Administration Tools.
  3. Double-click Services.
  4. Double-click the X25 service.
  5. Select one of these choices:
    • To stop the X25 service, for this session only, click Stop.
    • To permanently stop the X25 service, go to Startup type and select Disabled.
  6. Click OK to save the settings.

Consequences:

Gain Access

References:

Reported:

Not available

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page