A security audit of a new Linux server reveals that the vsftpd service is allowing anonymous, unauthenticated users to access files. The administrator has been tasked with disabling this functionality. Which of the following lines in the /etc/vsftpd.conf file must be changed to remediate this finding?
The correct answer is to set anonymous_enable=NO. This directive explicitly controls whether anonymous logins are permitted. Setting it to NO is the standard and direct way to disable anonymous FTP access, addressing the security finding. chroot_local_user=YES is a security best practice that jails local users to their home directory and does not control anonymous access. seccomp_sandbox=YES is a security feature that restricts the system calls the daemon can make, but it does not manage user authentication. listen=YES configures vsftpd to run in standalone mode, making it listen for incoming connections, but it does not control the authentication policy for those connections.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What does the `anonymous_enable` directive do in vsftpd?
Open an interactive chat with Bash
What is the purpose of `chroot_local_user=YES` in vsftpd?
Open an interactive chat with Bash
How does the `seccomp_sandbox=YES` setting enhance security in vsftpd?
Open an interactive chat with Bash
CompTIA Linux+ XK0-006 (V8)
Troubleshooting
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
IT & Cybersecurity Package Join Premium for Full Access