CCIE Practical Studies: Security (CCIE Self-Study)

Securing Your Startup Scripts

The startup scripts on your system reside in the /etc/rc2.d and /etc/rc3.d directories. Many of the services here are not required for proper operation of your system and pose potential security vulnerabilities. Preventing a script from starting is as simple as replacing the capital S with any other letter or, in the case of a kill script, replacing the capital K with a number. Here are some common services that you might not require and, in most cases, can safely disable:

Automounter— /etc/rc2.d/S74autofs
Sendmail— /etc/rc2.d/S88sendmail and /etc/rc1.d/K57sendmail
SNMP— /etc/rc2.d/S76snmpdx
Autoinstall— /etc/rc2.d/S72autoinstall
Cachefs— S73cachefs.daemon

Get CCIE Practical Studies: Security (CCIE Self-Study) now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

CCIE Practical Studies: Security (CCIE Self-Study) by Dmitry Bokotey, Andrew G. Mason, Raymond Morrow

Securing Your Startup Scripts

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly