{"description": "The <code>tftpd-hpa</code> package can be removed with the following command: <pre> $ apt-get remove tftpd-hpa</pre>", "rationale": "Removing the <tt>tftpd-hpa</tt> package decreases the risk of the accidental\n(or intentional) activation of tftp services.\n<br /><br />\nIf TFTP is required for operational support (such as transmission of router\nconfigurations), its use must be documented with the Information Systems\nSecurity Manager (ISSM), restricted to only authorized personnel, and have\naccess control rules established.", "severity": "high", "references": {"cis-csc": ["11", "12", "14", "15", "3", "8", "9"], "cobit5": ["APO13.01", "BAI10.01", "BAI10.02", "BAI10.03", "BAI10.05", "DSS01.04", "DSS05.02", "DSS05.03", "DSS05.05", "DSS06.06"], "isa-62443-2009": ["4.3.3.5.1", "4.3.3.5.2", "4.3.3.5.3", "4.3.3.5.4", "4.3.3.5.5", "4.3.3.5.6", "4.3.3.5.7", "4.3.3.5.8", "4.3.3.6.1", "4.3.3.6.2", "4.3.3.6.3", "4.3.3.6.4", "4.3.3.6.5", "4.3.3.6.6", "4.3.3.6.7", "4.3.3.6.8", "4.3.3.6.9", "4.3.3.7.1", "4.3.3.7.2", "4.3.3.7.3", "4.3.3.7.4", "4.3.4.3.2", "4.3.4.3.3"], "isa-62443-2013": ["SR 1.1", "SR 1.10", "SR 1.11", "SR 1.12", "SR 1.13", "SR 1.2", "SR 1.3", "SR 1.4", "SR 1.5", "SR 1.6", "SR 1.7", "SR 1.8", "SR 1.9", "SR 2.1", "SR 2.2", "SR 2.3", "SR 2.4", "SR 2.5", "SR 2.6", "SR 2.7", "SR 3.1", "SR 3.5", "SR 3.8", "SR 4.1", "SR 4.3", "SR 5.1", "SR 5.2", "SR 5.3", "SR 7.1", "SR 7.6"], "iso27001-2013": ["A.11.2.6", "A.12.1.2", "A.12.5.1", "A.12.6.2", "A.13.1.1", "A.13.2.1", "A.14.1.3", "A.14.2.2", "A.14.2.3", "A.14.2.4", "A.6.2.1", "A.6.2.2", "A.9.1.2"], "nist": ["CM-7(a)", "CM-7(b)", "CM-6(a)"], "nist-csf": ["PR.AC-3", "PR.IP-1", "PR.PT-3", "PR.PT-4"], "srg": ["SRG-OS-000480-GPOS-00227"], "anssi": ["R62"], "cis": ["2.1.16"], "pcidss4": ["2.2.4", "2.2"]}, "control_references": {"anssi": ["R62"], "cis": ["2.1.16"], "pcidss4": ["2.2.4", "2.2"]}, "components": [], "identifiers": {}, "ocil_clause": "the package is installed", "ocil": "\nRun the following command to determine if the <code>tftpd-hpa</code> package is installed:\n<pre>$ dpkg -l  tftpd-hpa</pre>", "oval_external_content": null, "fixtext": " To remove the Ubuntu 22.04 package tftpd-hpa run the following command:\n\n$ apt-get remove tftpd-hpa", "checktext": "", "vuldiscussion": "", "srg_requirement": "The Trivial File Transfer Protocol (TFTP) server package must not be installed if not required for Ubuntu 22.04 operational support.", "warnings": [], "conflicts": [], "requires": [], "policy_specific_content": {"stig": {"srg_requirement": "Ubuntu 22.04 must not have a Trivial File Transfer Protocol (TFTP) server package installed.", "vuldiscussion": "Removing the \"tftp-server\" package decreases the risk of the accidental (or intentional) activation of tftp services.\n\nIf TFTP is required for operational support (such as transmission of router configurations), its use must be documented with the information systems security manager (ISSM), restricted to only authorized personnel, and have access control rules established.", "checktext": "Verify that Ubuntu 22.04 does not have a \"tftp-server\" package installed with the following command:\n\n$ dnf list --installed | grep tftp-server\n\nIf the \"tftp-server\" package is installed, this is a finding.", "fixtext": "The \"tftp-server\" package can be removed with the following command:\n\n$ sudo dnf remove tftp-server"}}, "platform": null, "platforms": [], "sce_metadata": {}, "inherited_platforms": [], "cpe_platform_names": [], "inherited_cpe_platform_names": [], "bash_conditional": null, "fixes": {}, "title": "Uninstall tftpd-hpa Package", "definition_location": "/aptdata/openscap/scap-security-guide/linux_os/guide/services/obsolete/tftp/package_tftp-server_removed/rule.yml", "template": {"name": "package_removed", "vars": {"pkgname": "tftpd-hpa"}, "backends": {}}}