Remove telnet Clients
An XCCDF Rule
Description
The telnet client allows users to start connections to other systems via the telnet protocol.
Rationale
The telnet
protocol is insecure and unencrypted. The use
of an unencrypted transmission medium could allow an unauthorized user
to steal credentials. The ssh
package provides an
encrypted session and stronger security and is included in Ubuntu 20.04.
- ID
- xccdf_org.ssgproject.content_rule_package_telnet_removed
- Severity
- Low
- References
- Updated
Remediation - Ansible
- name: Ensure telnet is removed
package:
name: telnet
state: absent
tags:
- NIST-800-171-3.1.13
Remediation - Shell Script
# CAUTION: This remediation script will remove telnet
# from the system, and may remove any packages
# that depend on telnet. Execute this
# remediation AFTER testing on a non-production
# system!
Remediation - Puppet
include remove_telnet
class remove_telnet {
package { 'telnet':
ensure => 'purged',
}