GEN004900 - The ftpusers file must contain account names not allowed to use FTP.

Information

The ftpusers file contains a list of accounts that are not allowed to use FTP to transfer files. If the file does not contain the names of all accounts not authorized to use FTP, then unauthorized use of FTP may take place.

Solution

Add accounts not allowed to use FTP to the /etc/ftpd/ftpusers file.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_SOL_10_x86_V2R4_STIG.zip

Item Details

Category: ACCESS CONTROL

References: 800-53|AC-3(4), CAT|II, CCI|CCI-002165, Rule-ID|SV-227856r854507_rule, STIG-ID|GEN004900, STIG-Legacy|SV-28407, STIG-Legacy|V-841, Vuln-ID|V-227856

Plugin: Unix

Control ID: f07d574111792c97f89e3693baf5c93bd18a0a2fcf357fe28fc9f0df859f0446