iCompaas Support

Profile Applicability:
 • Level 1

Description:
 Bluetooth services provide wireless communication capabilities. If Bluetooth is not required on the system, disabling these services reduces the attack surface and prevents unauthorized wireless connections.

Rationale:
 Disabling unused Bluetooth services minimizes security risks associated with wireless vulnerabilities and unauthorized device pairing.

Impact:
 Pros:

• Reduces exposure to wireless attack vectors.
  

• Limits unnecessary network services.
  

Cons:

• Disabling Bluetooth may impact legitimate use if required.
  

Default Value:
 Bluetooth services may be enabled or running by default on some systems.

Pre-requisites:

• Root or sudo privileges to manage system services.
  

Remediation:

Test Plan:

Using Linux command line:

1. Check if Bluetooth service is enabled:

systemctl is-enabled bluetooth

2. Check if Bluetooth service is running:

systemctl status bluetooth

Implementation Plan:

Using Linux command line:

1. Disable Bluetooth service:

systemctl disable bluetooth

2. Stop running Bluetooth service:

systemctl stop bluetooth

3. Verify service is disabled and stopped:

systemctl is-enabled bluetooth  
systemctl status bluetooth

Backout Plan:

Using Linux command line:

1. Enable and start Bluetooth service if required:

systemctl enable bluetooth  
systemctl start bluetooth

2. Verify service status.

References:

• CIS Amazon Linux 2 Benchmark v3.0.0
  

• Systemd Service Management