Detections
Analytics
GEN004800 - Unencrypted FTP must not be used on the system - 'vsftpd'
Information
FTP is typically unencrypted and presents confidentiality and integrity risks. FTP may be protected by encryption in certain cases, such as when used in a Kerberos environment. SFTP and FTPS are encrypted alternatives to FTP.Solution
Disable the FTP daemons.Procedure:
# chkconfig gssftp off
# chkconfig vsftpd off
See Also
https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Oracle_Linux_5_V2R1_STIG.zip
Item Details
Audit Name: DISA STIG for Oracle Linux 5 v2r1
Category: CONFIGURATION MANAGEMENT
References: 800-53|CM-6b., CAT|II, CCI|CCI-000366, Rule-ID|SV-218554r603259_rule, STIG-ID|GEN004800, STIG-Legacy|SV-62885, STIG-Legacy|V-12010, Vuln-ID|V-218554
Plugin: Unix
Control ID: 729b0c0e55f0404fe6af37a728648103bb444e027464ce73d4c81504a1349abf