Navigate

Check: GEN004820

Solaris 9 X86 STIG: GEN004820 (in version v1 r9)

Title

Anonymous FTP must not be active on the system unless authorized. (Cat II impact)

Discussion

Due to the numerous vulnerabilities inherent in anonymous FTP, it is recommended that it not be used. If anonymous FTP must be used on a system, the requirement must be authorized and approved in the system accreditation package.

Check Content

Attempt to log into this host with a user name of anonymous and a password of guest (also try the password of guest@mail.com). If the logon is successful, this is a finding. Procedure: # ftp localhost Name: anonymous 530 Guest login not allowed on this machine.

Fix Text

Configure the FTP service to not permit anonymous logins.

Additional Identifiers

Rule ID: SV-846r2_rule

Vulnerability ID: V-846

Group Title:

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.

Number	Definition
CCI-001475	The organization reviews the proposed content of information prior to posting onto the publicly accessible information system to ensure that nonpublic information is not included.

Controls

Controls tied to check. These are derived from the CCIs shown above.

Number	Title
AC-22	Publicly Accessible Content