STIGQter: STIG Summary: IBM z/VM Using CA VM:Secure Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 27 Apr 2018:

For FTP processing Z/VM TCP/IP FTP server Exit must be enabled.

DISA Rule

SV-93563r1_rule

Vulnerability Number

V-78857

Group Title

SRG-OS-000032-GPOS-00013

Rule Version

IBMZ-VM-000090

Severity

CAT II

CCI(s)

CCI-000067 - The information system monitors remote access methods.

Weight

Fix Recommendation

Include the “FTAUDIT” statement in the TCP/IP Configuration file.

Check Contents

If there are no FTP servers’ active, this is not applicable.

Issue “SMSG” command for each FTP Server.

Query “FTAUDIT”.

If the “Exit” is not enabled, this is a finding.

Vulnerability Number

V-78857

Documentable

False

Rule Version

IBMZ-VM-000090

Severity Override Guidance

If there are no FTP servers’ active, this is not applicable.

Issue “SMSG” command for each FTP Server.

Query “FTAUDIT”.

If the “Exit” is not enabled, this is a finding.

Check Content Reference

Target Key

3211

For FTP processing Z/VM TCP/IP FTP server Exit must be enabled.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments