Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-14668 | NET0742 | SV-15310r2_rule | Medium |
Description |
---|
The additional services enabled on a router increases the risk for an attack since the router will listen for these services. In addition, these services provide an unsecured method for an attacker to gain access to the router. |
STIG | Date |
---|---|
Perimeter L3 Switch Security Technical Implementation Guide | 2017-03-09 |
Check Text ( C-12776r3_chk ) |
---|
Review the device configuration to determine if the device has been setup to be an FTP server. If the device has been configured to be an FTP server, this is a finding. |
Fix Text (F-14129r2_fix) |
---|
Disable FTP server services on the device. |