Skip to content

Remove telnet Clients

An XCCDF Rule

Description

The telnet client allows users to start connections to other systems via the telnet protocol.

Rationale

The telnet protocol is insecure and unencrypted. The use of an unencrypted transmission medium could allow an unauthorized user to steal credentials. The ssh package provides an encrypted session and stronger security and is included in Red Hat Virtualization 4.

ID
xccdf_org.ssgproject.content_rule_package_telnet_removed
Severity
Low
References
Updated



Remediation - Anaconda Pre-Install Instructions


package --remove=telnet

Remediation - Ansible

- name: Ensure telnet is removed
  package:
    name: telnet
    state: absent
  tags:
  - NIST-800-171-3.1.13

Remediation - Puppet

include remove_telnet

class remove_telnet {
  package { 'telnet':
    ensure => 'purged',
  }

Remediation - Shell Script


# CAUTION: This remediation script will remove telnet
#	   from the system, and may remove any packages
#	   that depend on telnet. Execute this
#	   remediation AFTER testing on a non-production
#	   system!