UCF STIG Viewer Logo

The tftp-server package must not be installed unless required.


Finding ID Version Rule ID IA Controls Severity
V-217991 RHEL-06-000222 SV-217991r505923_rule Medium
Removing the "tftp-server" package decreases the risk of the accidental (or intentional) activation of tftp services.
Red Hat Enterprise Linux 6 Security Technical Implementation Guide 2020-09-03


Check Text ( C-19472r376988_chk )
Run the following command to determine if the "tftp-server" package is installed:

# rpm -q tftp-server

If the package is installed and not documented and approved by the ISSO, this is a finding.
Fix Text (F-19470r376989_fix)
The "tftp-server" package can be removed with the following command:

# yum erase tftp-server