F056. Anonymous connection

Description

Due to an improper configuration of the server (e.g., an FTP service with username: anonymous and password: guest* or an SMTP open relay), it is possible to make anonymous connections to it and access otherwise protected resources.

Rules

  1. R142. Change system default credentials

  2. R264. Request authentication

  3. R265. Restrict access to critical processes

  4. R266. Disable insecure functionalities

  5. R319. Make authentication options equally secure

OWASP logo

Corporate member of The OWASP Foundation

Clutch Review

Copyright © 2021 Fluid Attacks, We hack your software. All rights reserved.

Service status - Terms of Use - Privacy Policy - Cookie Policy