GEN000000-AIX0310 – The /etc/ftpaccess.ctl file must exist.

Details

The ftpaccess.ctl file contains options for the ftp daemon, such as herald, motd, user access, and permissions to files and directories. If the ftpaccess.ctl file does not exist, the ftpd process will not display any warning banners, and permissions will only be enforced using basic UNIX permissions.

Solution

Create a /etc/ftpaccess.ctl file.
#touch /etc/ftpaccess.ctl

Add at least the herald: /path to login banner to the /etc/ftpaccess.ctl file.

#vi /etc/ftpaccess.ctl

Supportive Information

The following resource is also helpful.

https://iasecontent.disa.mil/stigs/zip/U_AIX_6-1_V1R14_STIG.zip

This security hardening control applies to the following category of controls within NIST 800-53: Access Control.This control applies to the following type of system Unix.

References

800-53|AC-4(8)
CAT|II
CCI|CCI-000032
CSCv6|3.1
Group-ID|V-29519
Rule-ID|SV-38750r1_rule
STIG-ID|GEN000000-AIX0310
Vuln-ID|V-29519

Source

Tenable.com/audits

Updated on July 16, 2022

Was this article helpful?

Yes No

Details

Solution

Supportive Information

References

Source

Related Articles