Uninstall the inet-based telnet server
An XCCDF Rule
Description
The inet-based telnet daemon should be uninstalled.
Rationale
telnet allows clear text communications, and does not protect any
data transmission between client and server. Any confidential data can be
listened and no integrity checking is made.
- ID
- xccdf_org.ssgproject.content_rule_package_inetutils-telnetd_removed
- Severity
- High
- References
- Updated
Remediation - Shell Script
# CAUTION: This remediation script will remove inetutils-telnetd
# from the system, and may remove any packages
# that depend on inetutils-telnetd. Execute this
# remediation AFTER testing on a non-production
# system!
Remediation - Anaconda Pre-Install Instructions
package --remove=inetutils-telnetd
Remediation - Ansible
- name: Ensure inetutils-telnetd is removed
package:
name: inetutils-telnetd
state: absent
tags:
- NIST-800-53-CM-6(a)
Remediation - Puppet
include remove_inetutils-telnetd
class remove_inetutils-telnetd {
package { 'inetutils-telnetd':
ensure => 'purged',
}