Anonymous FTP shell (UNIX)

Module: Network Integrity

This check reports which shell is being used for an anonymous FTP user. For security purposes, this should not be a valid shell.

The following table lists the error message for the check.

Table: Error message for Anonymous FTP shell

Message String ID and Category	Platform and Message Numeric ID	Message Title and Description	Additional Information
String ID: STKU_ANONSHELL Category: Change Notification	UNIX (6440)	Title: Anonymous FTP shell Description:An anonymous ftp account is present in your password file. For security reasons, the shell specified for this account should not be a valid one (e.g. /bin/false). This prevents users from logging in as the ftp user. If no shell is specified in the password file, the default shell will be used. You should verify that the shell specified is not a valid one.	Severity: yellow-1 Correctable: false Snapshot Updatable: false Template Updatable: false Information Field Format: [Shell: %s]

Message String ID and Category

Platform and Message Numeric ID

Message Title and Description

Additional Information

String ID: STKU_ANONSHELL

Category: Change Notification

UNIX (6440)

Title: Anonymous FTP shell

Description:An anonymous ftp account is present in your password file. For security reasons, the shell specified for this account should not be a valid one (e.g. /bin/false). This prevents users from logging in as the ftp user. If no shell is specified in the password file, the default shell will be used. You should verify that the shell specified is not a valid one.

Severity: yellow-1

Correctable: false

Snapshot Updatable: false

Template Updatable: false

Information Field Format: [Shell: %s]