IBM z/OS FTP.DATA configuration statements for the FTP Server must be specified in accordance with requirements.
Severity | Group ID | Group Title | Version | Rule ID | Date | STIG Version |
|---|---|---|---|---|---|---|
| medium | V-255895 | SRG-OS-000480-GPOS-00227 | ACF2-FT-000120 | SV-255895r991589_rule | 2025-03-11 | 9 |
| Description |
|---|
| This requirement is intended to cover both traditional interactive logons to information systems and general accesses to information systems that occur in other types of architectural configurations (e.g., service-oriented architectures). |
| ℹ️ Check |
|---|
| Refer to the Data configuration file specified on the SYSFTPD DD statement in the FTP started task JCL. If the UMASK statement is coded with a value of "077", this is not a finding. |
| ✔️ Fix |
|---|
| Configure the FTP configuration to include the UMASK statement with a value of "077". If the FTP Server requires a UMASK value less restrictive than "077", requirements should be justified and documented with the ISSO. |