Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-14668 | NET0742 | SV-15310r1_rule | ECSC-1 | Medium |
Description |
---|
The additional services enabled on a router increases the risk for an attack since the router will listen for these services. In addition, these services provide an unsecured method for an attacker to gain access to the router. |
STIG | Date |
---|---|
Infrastructure Router Security Technical Implementation Guide | 2013-10-08 |
Check Text ( C-12776r1_chk ) |
---|
Base Procedure: Ensure ftp server has not been implemented in the configuration by verifying the vendor default and reviewing the configuration. |
Fix Text (F-14129r1_fix) |
---|
The router administrator will disable ftp server features for all routers. |