Any active TFTP daemon must be authorized and approved in the system accreditation package.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| GEN005140-ESXI5-PNF | GEN005140-ESXI5-PNF | GEN005140-ESXI5-PNF_rule | High |
| Description |
|---|
| TFTP is a file transfer protocol often used by embedded systems to obtain configuration data or software. The service is unencrypted and does not require authentication of requests. Data available using this service may be subject to unauthorized access or interception. Applicable, but permanent not-a-finding - The hypervisor does not support this function. |
| STIG | Date |
|---|---|
| VMware ESXi v5 Security Technical Implementation Guide | 2013-01-15 |
Details
| Check Text ( C-GEN005140-ESXI5-PNF_chk ) |
|---|
| ESXi supports this requirement and cannot be configured to be out of compliance. This is a permanent not a finding. |
| Fix Text (F-GEN005140-ESXI5-PNF_fix) |
|---|
| This requirement is permanent not a finding. No fix is required. |