UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

If the system is an anonymous FTP server, it must be isolated to the DMZ network.


Overview

Finding ID Version Rule ID IA Controls Severity
V-4702 GEN004840 SV-37528r1_rule EBBD-1 EBBD-2 EBBD-3 ECSC-1 Medium
Description
Anonymous FTP is a public data service which is only permitted in a server capacity when located on the DMZ network.
STIG Date
Red Hat Enterprise Linux 5 Security Technical Implementation Guide 2013-01-17

Details

Check Text ( C-36187r1_chk )
Use the command "ftp" to connect the system's FTP service. Attempt to log into this host with a user name of anonymous and a password of guest (also try the password of guest@mail.com). If the logon is not successful, this check is Not Applicable.

Ask the SA if the system is located on a DMZ network. If the system is not located on a DMZ network, this is a finding.

Fix Text (F-31442r1_fix)
Remove anonymous ftp capability or move the system to a DMZ network.