Description
The vsftpd package can be removed with the following command:
Rationale
Removing the vsftpd package decreases the risk of its
accidental activation.
Shell script
The following script can be run on the host to remediate the issue.
# CAUTION: This remediation script will remove vsftpd
# from the system, and may remove any packages
# that depend on vsftpd. Execute this
# remediation AFTER testing on a non-production
# system!
DEBIAN\_FRONTEND=noninteractive apt-get remove -y "vsftpd"
Ansible playbook
The following playbook can be run with Ansible to remediate the issue.
- name: Ensure vsftpd is removed
package:
name: vsftpd
state: absent
tags:
- NIST-800-53-CM-6(a)
- NIST-800-53-CM-7
- NIST-800-53-CM-7(a)
- NIST-800-53-CM-7(b)
- NIST-800-53-CM-7.1(ii)
- NIST-800-53-IA-5(1)(c)
- NIST-800-53-IA-5(1).1(v)
- PCI-DSSv4-2.2.4
- disable\_strategy
- high\_severity
- low\_complexity
- low\_disruption
- no\_reboot\_needed
- package\_vsftpd\_removed
