The IBM z/VM TCP/IP ANONYMOU statement must not be coded in FTP configuration.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-237921 | IBMZ-VM-000680 | SV-237921r858975_rule | CCI-000804 | medium |
| Description | ||||
| Operating systems utilizing encryption are required to use FIPS-compliant mechanisms for authenticating to cryptographic modules. | ||||
| STIG | Date | |||
| IBM zVM Using CA VM:Secure Security Technical Implementation Guide | 2022-08-31 | |||
Related Frameworks
2 paths across 2 frameworks
Related Frameworks
NIST 800-531 mapping
IA-8
1.00
- DISA · V2R2 · disa_xccdf · related
- DISA · 2025-01-23 · disa_cci_list · equivalent
CCI1 mapping
CCI-000804
1.00
- DISA · V2R2 · disa_xccdf · related
Details
Check Text (C-237921r858975_chk)
If there is no FTP Server active, this is not applicable.
Examine the "DTCPARMS" file for each active FTP server.
If there is ":ANONYMOUS" or ":ANONYMOU" statement, this is a finding.
Examine the "SRVRFTP" command.
If "ANONYMOU" is coded, this is a finding.
Fix Text (F-41090r858974_fix)
Ensure the ":ANONYMOUS" or ":ANONYMOU" statement is not coded in the "DTCPARMS" or "SRVRFTP" command.