The Red Hat Enterprise Linux operating system must not have the Trivial File Transfer Protocol (TFTP) server package installed if not required for operational support.

An XCCDF Rule

Details
Profiles

Description

If TFTP is required for operational support (such as the transmission of router configurations) its use must be documented with the Information System Security Officer (ISSO), restricted to only authorized personnel, and have access control rules established.

ID: SV-204621r853996_rule
Version: RHEL-07-040700
Severity: High
References: CCI-000318 CCI-000368 CCI-001812 CCI-001813 CCI-001814
Updated: 15 days ago

Remediation Templates

Remove the TFTP package from the system with the following command:

# yum remove tftp-server

The Red Hat Enterprise Linux operating system must not have the Trivial File Transfer Protocol (TFTP) server package installed if not required for operational support.

Description

Remediation Templates

A Manual Procedure