Skip to content

0101-telnetserver-uninstalled-Telnet Server Uninstalled

Rule ID

  • 0101-telnetserver-uninstalled

Category

  • system

Level

  • warn

Compatible Versions

  • Linux

Description

  • The telnet-server package contains the telnet daemon, which accepts connections from users on other systems via the telnet protocol. This software uses an insecure transmission protocol and poses security risks.

Scan Frequency

      • */1 * *

Theoretical Basis

  • The telnet protocol is insecure and unencrypted. Using unencrypted transmission media can allow users with access to sniff network traffic to steal credentials. The ssh package provides encrypted sessions and stronger security.

Risk Items

  • Hacker penetration

  • Data leakage

  • Network security

  • Mining risk

  • Botnet risk

Audit Method

  • Execute the following command to verify whether telnet-server is installed.
# rpm -q telnet-server
package telnet-server is not installed

Remediation

  • Run the command to remove telnet-server. 
    # yum remove telnet-server

Impact

  • None

Default Values

  • None

References

  • None

CIS Controls

  • Version 7

  • 2.6 Address Unauthorized Software
    Ensure unauthorized software is removed or directories are updated in a timely manner.

  • 9.2 Ensure Only Approved Ports, Protocols, and Services Are Running
    Ensure only network ports, protocols, and services that have validated business requirements are listening on each system.

Feedback

Is this page helpful? ×