Skip to content
ATO Pathways
Log In
Overview
Search
Catalogs
SCAP
OSCAL
Catalogs
Profiles
Documents
References
Knowledge Base
Platform Documentation
Compliance Dictionary
Platform Changelog
About
Catalogs
XCCDF
Guide to the Secure Configuration of Fedora
Services
FTP Server
Configure vsftpd to Provide FTP Service if Necessary
Restrict the Set of Users Allowed to Access FTP
Restrict Access to Anonymous Users if Possible
Restrict Access to Anonymous Users if Possible
An XCCDF Rule
Details
Profiles
Prose
Restrict Access to Anonymous Users if Possible
Medium Severity
Is there a mission-critical reason for users to transfer files to/from their own accounts using FTP, rather than using a secure protocol like SCP/SFTP? If not, edit the vsftpd configuration file. Add or correct the following configuration option:
local_enable=NO
If non-anonymous FTP logins are necessary, follow the guidance in the remainder of this section to secure these logins as much as possible.