Detections
Analytics

2.1.16 Ensure telnet-server services are not in use

Information

The telnetd package contains the telnet daemon, which accepts connections from users from other systems via the telnet protocol.

The telnet protocol is insecure and unencrypted. The use of an unencrypted transmission medium could allow a user with access to sniff network traffic the ability to steal credentials. The ssh package provides an encrypted session and stronger security.

Solution

Run the following commands to stop inetutils-inetd.service, and remove the telnetd package:

# systemctl stop inetutils-inetd.service
# apt purge telnetd

- OR -

- IF - the telnetd package is required as a dependency:

Run the following commands to stop and mask inetutils-inetd.service:

# systemctl stop inetutils-inetd.service
# systemctl mask inetutils-inetd.service

Impact:

There may be packages that are dependent on the telnetd package. If the telnetd package is removed, these dependent packages will be removed as well. Before removing the telnetd package, review any dependent packages to determine if they are required on the system.

- IF - a dependent package is required: stop and mask inetutils-inetd.service leaving the telnetd package installed.

See Also

https://workbench.cisecurity.org/benchmarks/24932

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6, 800-53|CM-7, CSCv7|2.6, CSCv7|9.2

Plugin: Unix

Control ID: 3a6eda7b4fa10b32051feb0d55a4fe40e8ceb872e9b03a41bc0ee3ce909365bb