mirror of
https://github.com/projectdiscovery/nuclei-templates.git
synced 2026-02-01 00:03:39 +08:00
42 lines
1.3 KiB
YAML
42 lines
1.3 KiB
YAML
id: ftp-server
|
|
|
|
info:
|
|
name: Ensure FTP Server Service is Not Installed
|
|
author: Th3l0newolf
|
|
severity: info
|
|
description: |
|
|
The vsftpd package provides an FTP server for file transfer services.Since FTP is unencrypted and insecure, it should only be installed when explicitly required.
|
|
remediation: |
|
|
- Ensure the `vsftpd` package is not installed unless explicitly required.
|
|
- To remove the package, run: sudo apt-get remove vsftpd -y
|
|
reference:
|
|
- https://www.cisecurity.org/benchmark/ubuntu_linux
|
|
metadata:
|
|
verified: true
|
|
tags: cis,local,cisecurity,audit,linux,ubuntu
|
|
|
|
self-contained: true
|
|
|
|
code:
|
|
- engine:
|
|
- bash
|
|
args:
|
|
- "-c"
|
|
- |
|
|
if dpkg-query -s vsftpd &>/dev/null; then
|
|
echo "[ftp-server-check:Policy-Fail] [vsftpd is installed] [CIS_FAIL]"
|
|
else
|
|
echo "[ftp-server-check:Policy-Pass] [vsftpd is not installed] [CIS_PASS]"
|
|
fi
|
|
|
|
matchers:
|
|
- type: word
|
|
name: policy-pass
|
|
words:
|
|
- "Policy-Pass"
|
|
|
|
- type: word
|
|
name: policy-fail
|
|
words:
|
|
- "Policy-Fail"
|
|
# digest: 4b0a00483046022100c7ff63a06f5cf7394699255c1d518450d6d10317334a8f9081e4ac9dddaee5cf022100ab8764795bc72e40aceaedce98a29e587514c46693d1d06ab62a619416179bed:922c64590222798bb761d5b6d8e72950 |