The ndpd-host daemon must be disabled on AIX.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-215367	AIX7-00-003062	SV-215367r958478_rule		Medium

Description

This is the Neighbor Discovery Protocol (NDP) daemon, required in IPv6. The ndpd-host is the NDP daemon for the server. Unless the server utilizes IPv6, this is not required and should be disabled to prevent attacks.

STIG	Date
IBM AIX 7.x Security Technical Implementation Guide	2024-08-16

Details

Check Text (C-16565r808439_chk)

If the system is using IPv6, this is Not Applicable.

From the command prompt, execute the following command:
# grep "^start[[:blank:]]/usr/sbin/ndpd-host" /etc/rc.tcpip

If there is any output from the command, this is a finding.

Fix Text (F-16563r294553_fix)

In "/etc/rc.tcpip", comment out the "ndpd-host" entry by running command:
# chrctcp -d ndpd-host