Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-26602 | WN12-SV-000101 | SV-52237r4_rule | Medium |
Description |
---|
Unnecessary services increase the attack surface of a system. Some of these services may not support required levels of authentication or encryption. |
STIG | Date |
---|---|
Windows Server 2012/2012 R2 Domain Controller Security Technical Implementation Guide | 2020-06-16 |
Check Text ( C-69287r2_chk ) |
---|
If the server has the role of an FTP server, this is NA. Run "Services.msc". If the "Microsoft FTP Service" (Service name: FTPSVC) is installed and not disabled, this is a finding. |
Fix Text (F-74887r1_fix) |
---|
Remove or disable the "Microsoft FTP Service" (Service name: FTPSVC). To remove the "FTP Server" role from a system: Start "Server Manager" Select the server with the "FTP Server" role. Scroll down to "ROLES AND FEATURES" in the left pane. Select "Remove Roles and Features" from the drop down "TASKS" list. Select the appropriate server on the "Server Selection" page, click "Next". De-select "FTP Server" under "Web Server (IIS). Click "Next" and "Remove" as prompted. |