iCompaas Support

Profile Applicability:
 • Level 1

Description:
 The rsync service enables remote file synchronization. If the system does not require rsync server functionality, disabling the service reduces potential unauthorized data transfer and minimizes the attack surface.

Rationale:
 Disabling unused rsync services helps prevent unauthorized access or data leakage via file synchronization services.

Impact:
 Pros:

• Limits exposure to unauthorized file transfers.
  

• Reduces unnecessary network services.
  

Cons:

• Disabling rsync services on systems that require them may disrupt legitimate operations.
  

Default Value:
 The rsync service may be enabled or running by default on some systems.

Pre-requisites:

• Root or sudo privileges to manage system services.
  

Remediation:

Test Plan:

Using Linux command line:

1. Check if rsync service is enabled:

systemctl is-enabled rsync

2. Check if rsync service is running:

systemctl status rsync

Implementation Plan:

Using Linux command line:

1. Disable the rsync service:

systemctl disable rsync

2. Stop the running rsync service:

systemctl stop rsync

3. Verify the service is disabled and stopped:

systemctl is-enabled rsync  
systemctl status rsync

Backout Plan:

Using Linux command line:

1. Enable and start the rsync service if needed:

systemctl enable rsync  
systemctl start rsync

2. Verify service status.

References:

• CIS Amazon Linux 2 Benchmark v3.0.0
  

• Systemd Service Management