Skip to content
ATO Pathways
  Log In

Uninstall the inet-based telnet server

An XCCDF Rule

Description

The inet-based telnet daemon should be uninstalled.

Rationale

telnet allows clear text communications, and does not protect any data transmission between client and server. Any confidential data can be listened and no integrity checking is made.

ID
xccdf_org.ssgproject.content_rule_package_inetutils-telnetd_removed
Severity
High
References
Updated



Remediation - Ansible

- name: Ensure inetutils-telnetd is removed
  package:
    name: inetutils-telnetd
    state: absent
  tags:
  - NIST-800-53-CM-6(a)

Remediation - Puppet

include remove_inetutils-telnetd

class remove_inetutils-telnetd {
  package { 'inetutils-telnetd':
    ensure => 'purged',
  }

Remediation - Shell Script


# CAUTION: This remediation script will remove inetutils-telnetd
#	   from the system, and may remove any packages
#	   that depend on inetutils-telnetd. Execute this
#	   remediation AFTER testing on a non-production
#	   system!