Code: p60 Severity: Infomation
Description: FTP allows a user to create a new directory on the target machine. FTP Mkdir decoding discovers all new directories that are created through FTP. Impact: This decode records user attempts to create new directories, whether successful or not. In combination with the "anonymous" username, this suggests suspicious activity. Examine the FTP Username Decode information to associate a username with this command. Corrective: In combination with the other FTP decodes, this decode can construct a log of all FTP activity, including date and time, user name, and the names of the files transferred. This can be examined for compliance with acceptable use policies, or for suspicion of unauthorized disclosure of sensitive information.
|
