Details
This change adds the root user to the /etc/ftpusers file, which disables ftp for root.
This change ensures that direct root ftp access is disabled. As detailed previously, ftp as a service should be disabled. If the service has to be enabled then this change must be implemented to ensure that remote root file transfer access is not enabled.
Solution
Add root to the /etc/ftpusers file-
echo ‘root’ >> /etc/ftpusers
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Access Control.This control applies to the following type of system Unix.