STIGQter STIGQter: STIG Summary: Red Hat Enterprise Linux 7 Security Technical Implementation Guide Version: 3 Release: 3 Benchmark Date: 23 Apr 2021:

The Red Hat Enterprise Linux operating system must not have a File Transfer Protocol (FTP) server package installed unless needed.

DISA Rule

SV-204620r603261_rule

Vulnerability Number

V-204620

Group Title

SRG-OS-000480-GPOS-00227

Rule Version

RHEL-07-040690

Severity

CAT I

CCI(s)

Weight

10

Fix Recommendation

Document the "vsftpd" package with the ISSO as an operational requirement or remove it from the system with the following command:

# yum remove vsftpd

Check Contents

Verify an FTP server has not been installed on the system.

Check to see if an FTP server has been installed with the following commands:

# yum list installed vsftpd

vsftpd-3.0.2.el7.x86_64.rpm

If "vsftpd" is installed and is not documented with the Information System Security Officer (ISSO) as an operational requirement, this is a finding.

Vulnerability Number

V-204620

Documentable

False

Rule Version

RHEL-07-040690

Severity Override Guidance

Verify an FTP server has not been installed on the system.

Check to see if an FTP server has been installed with the following commands:

# yum list installed vsftpd

vsftpd-3.0.2.el7.x86_64.rpm

If "vsftpd" is installed and is not documented with the Information System Security Officer (ISSO) as an operational requirement, this is a finding.

Check Content Reference

M

Target Key

2899

Comments