Back

Disable Internet Message Access Protocol unless Internet Message Access Protocol use is absolutely necessary.


CONTROL ID
01485
CONTROL TYPE
Configuration
CLASSIFICATION
Preventive

SUPPORTING AND SUPPORTED CONTROLS



This Control directly supports the implied Control(s):
  • Disable all unnecessary services unless otherwise noted in a policy exception., CC ID: 00880

There are no implementation support Controls.


SELECTED AUTHORITY DOCUMENTS COMPLIED WITH



  • Is the system configured to filter Internet Message Access Protocol? (Table Row VI.10, OECD / World Bank Technology Risk Checklist, Version 7.3)
  • Only enable IMAP if absolutely necessary. (§ 2.7, The Center for Internet Security Red Hat Enterprise Linux Benchmark, 1.0.5)
  • Only enable IMAP if absolutely necessary. (§ 2.7, The Center for Internet Security Red Hat Enterprise Linux Benchmark, 1.1.1)
  • Only enable IMAP if absolutely necessary. (§ 2.7, The Center for Internet Security Slackware Linux Benchmark, 1.1)
  • Only enable IMAP if absolutely necessary. (§ 2.7, The Center for Internet Security SuSE Linux Enterprise Server Benchmark, 2)
  • Protection of the instant messaging infrastructure should be improved by employing a standard client configuration for the instant messaging application. (CF.15.02.04a, The Standard of Good Practice for Information Security)
  • Protection of the instant messaging infrastructure should be improved by employing a standard client configuration for the instant messaging application. (CF.15.02.04a, The Standard of Good Practice for Information Security, 2013)
  • imap2 service should be enabled or disabled as appropriate Technical Mechanisms: via inetd via inetd.conf Parameters: enabled/disabled References: 10.8.10.5.4.1 (11) #21 (CCE-4926-2, Common Configuration Enumeration List, Combined XML: AIX 5.3, 5.20130214)
  • imap2 service should be enabled or disabled as appropriate Technical Mechanisms: via inetd via inetd.conf Parameters: enabled/disabled References: 10.8.10.5.4.1 (11) #21 (CCE-5763-8, Common Configuration Enumeration List, Combined XML: HP-UX 11.23, 5.20130214)
  • imap2 service should be enabled or disabled as appropriate Technical Mechanisms: via xinetd Parameters: enabled/disabled References: 10.8.10.5.4.1 (11) #21 (CCE-6458-4, Common Configuration Enumeration List, Combined XML: Red Hat Enterprise Linux 4, 5.20130214)
  • imap2 service should be enabled or disabled as appropriate Technical Mechanisms: via inetd via inetd.conf Parameters: enabled/disabled References: 10.8.10.5.4.1 (11) #21 (CCE-6766-0, Common Configuration Enumeration List, Combined XML: Sun Solaris 8, 5.20130214)
  • imap2 service should be enabled or disabled as appropriate Technical Mechanisms: via inetd via inetd.conf Parameters: enabled/disabled References: 10.8.10.5.4.1 (11) #21 (CCE-7058-1, Common Configuration Enumeration List, Combined XML: Sun Solaris 9, 5.20130214)