Detections
Analytics
GEN003850 - The telnet daemon must not be running.
Information
The telnet daemon provides a typically unencrypted remote access service which does not provide for the confidentiality and integrity of user passwords or the remote session. If a privileged user were to log on using this service, the privileged user password could be compromised.Solution
Edit the /etc/inetd.conf file and comment out the telnet line.Reload the inetd process.
# refresh -s inetd
See Also
http://iasecontent.disa.mil/stigs/zip/U_STIG_Library_2015_07.zip
Item Details
Audit Name: DISA AIX 5.3 STIG v1r2
Category: CONFIGURATION MANAGEMENT
References: 800-53|CM-7, CAT|I, CCI|CCI-000197, CSCv6|9.1, Rule-ID|SV-38953r1_rule, STIG-ID|GEN003850, Vuln-ID|V-24386
Plugin: Unix
Control ID: 26f57a8ef38453ab1e4828b81bc62fcb38c6d1cba02ed843206fab49818d9482