InformationCleartext Management Services should be disabled.
Telnet is a remote management protocol that allows users to connect to the command line of a JUNOS router or other device.
Because Telnet transmits all data (including passwords) in cleartext (unencrypted) over the network and provides no assurance of the identity of the hosts involved, it can allow an attacker to gain sensitive configuration, password and other data and is also vulnerable to session hijacking and injection attacks.
This makes Telnet and other unencrypted management applications completely unsuitable for managing network devices and Telnet should be disabled.
Ensure administrative access via SSH or other secure method is configured and working before disabling Telnet in a production environment to ensure that administrative access is not lost.
SolutionTo disable Telnet access issue the following command from the [edit system telnet] hierarchy;
[edit system services]
[email protected]# delete telnet
Telnet is disable by default on most current platforms. Telnet cannot be configured on JUNOS in FIPS Mode.