Uninstall the inet-based telnet server
An XCCDF Rule
Description
The inet-based telnet daemon should be uninstalled.
Rationale
telnet
allows clear text communications, and does not protect any
data transmission between client and server. Any confidential data can be
listened and no integrity checking is made.
- ID
- xccdf_org.ssgproject.content_rule_package_inetutils-telnetd_removed
- Severity
- High
- References
- Updated
Remediation - Puppet
include remove_inetutils-telnetd
class remove_inetutils-telnetd {
package { 'inetutils-telnetd':
ensure => 'purged',
}
Remediation - Shell Script
# CAUTION: This remediation script will remove inetutils-telnetd
# from the system, and may remove any packages
# that depend on inetutils-telnetd. Execute this
# remediation AFTER testing on a non-production
# system!
Remediation - Ansible
- name: Ensure inetutils-telnetd is removed
package:
name: inetutils-telnetd
state: absent
tags:
- NIST-800-53-CM-6(a)