STIGQter: STIG Summary: Oracle Linux 5 Security Technical Implementation Guide Version: 1 Release: 13 Benchmark Date: 26 Oct 2018: The system must not have the unnecessary ftp account.

DISA Rule

SV-63231r2_rule

Vulnerability Number

V-27279

Group Title

GEN000290-4

Rule Version

GEN000290-4

Severity

CAT II

CCI(s)

• CCI-000012 - The organization reviews information system accounts for compliance with account management requirements per organization-defined frequency.

Weight

10

Fix Recommendation

Remove the "ftp" account from the /etc/passwd file before connecting a system to the network.

Check Contents

Check the system for the unnecessary "ftp" accounts.

Procedure:
# rpm -q krb5-workstation
An ftp server is part of "krb5-workstation". If it is installed the "ftp" user is necessary and this is not a finding.

# rpm -q vsftp
If the "vsftp" ftp server is installed the "ftp" user is necessary and this is not a finding.

# grep ^ftp /etc/passwd
If this account exists and no ftp server is installed which requires it, this is a finding.

Vulnerability Number

V-27279

Documentable

False

Rule Version

GEN000290-4

Severity Override Guidance

Check the system for the unnecessary "ftp" accounts.

Procedure:
# rpm -q krb5-workstation
An ftp server is part of "krb5-workstation". If it is installed the "ftp" user is necessary and this is not a finding.

# rpm -q vsftp
If the "vsftp" ftp server is installed the "ftp" user is necessary and this is not a finding.

# grep ^ftp /etc/passwd
If this account exists and no ftp server is installed which requires it, this is a finding.

Check Content Reference

M

Responsibility

System Administrator

Target Key

2207

Comments