X25 daemon running

x25 (154) The risk level is classified as LowLow Risk

Description:

An X25 gateway service was detected as running. X25 allows an attacker to possibly gain access using an X.25 network rather than through TCP/IP.


Consequences:

Gain Access

Remedy:

Remove or disable the X25 daemon if it is not needed. To remove or disable the X25 daemon:

For Unix:

To disable X25, put # at the beginning of the snmp line in your etc/inetd.conf file (usually located in /etc) and then restart inetd. Refer to your vendor's documentation for more information.

For Windows NT:

  1. Open the Services control panel. (From the Windows NT Start menu, select Settings, Control Panel, Services.)
  2. From the Services list, select the X25 service.
  3. Select one of these choices:
    • To stop the X25 service for this session only, click Stop.
    • To permanently stop the X25 service, click Startup and choose the Disabled option.
  4. Click OK.

For Windows 2000:

  1. Open Control Panel from the Start menu, Settings.
  2. Double-click Administration Tools.
  3. Double-click Services.
  4. Double-click the X25 service.
  5. Select one of these choices:
    • To stop the X25 service, for this session only, click Stop.
    • To permanently stop the X25 service, go to Startup type and select Disabled.
  6. Click OK to save the settings.

References:

Platforms Affected:

  • Apple Mac OS
  • Cisco IOS
  • Compaq Tru64
  • Data General DG/UX
  • IBM AIX
  • IBM OS2
  • Linux Kernel
  • Microsoft Windows 2000
  • Microsoft Windows 2003 Server
  • Microsoft Windows 95
  • Microsoft Windows 98
  • Microsoft Windows 98SE
  • Microsoft Windows Me
  • Microsoft Windows NT 4.0
  • Microsoft Windows XP
  • Novell NetWare
  • SCO SCO Unix
  • SGI IRIX
  • Sun Solaris
  • Unix Unix
  • WindRiver BSDOS
  • HP-UX

Reported:

Not available

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page