Access Security - Disable insecure or unnecessary access services (telnet, J-Web over HTTP, FTP, etc.) - ftp
Information
Access services are considered insecure when communication to the device is unencrypted. Clear-text communications are susceptible to sniffing, replay, and packet capture attacks.
Solution
Disable ftp as an insecure service. user@host# edit system services user@host# delete ftp