
TFTP (Trivial File Transfer Protocol)
TFTP is a simplified version of FTP. It has no authentication process before
letting a file transfer take place. An intruder can easily grab the password
file. This option checks to see if the password file is obtainable.
Risk: Medium
OS Vulnerable: All systems running TFTP
Fix: For hosts that do not need to allow TFTP access:
Advisories:
Disable
send the SIGHUP signal to the inetd process to restart the process. The disabled entry resembles the following
line: