2.12 Disable Telnet Service

Information

The telnet daemon, which accepts connections from users from other systems via the
telnet protocol and can be used for remote shell access.

The telnet protocol is insecure and unencrypted. The use of an unencrypted transmission
medium could allow a user with access to sniff network traffic the ability to steal
credentials. The ssh protocol provides an encrypted session and stronger security.

Solution

Disable telnet server if enabled-# svcadm disable svc-/network/telnet3 Kernel TuningThis section describes additional measures that may be taken to provide protection on the kernel
level.

See Also

https://workbench.cisecurity.org/files/616