Ensure Telnet Client Is Not Installed : iCompaas Support

Profile Applicability:
• Level 1

Description:
The Telnet client provides unencrypted remote terminal access. Removing the Telnet client reduces security risks associated with transmitting sensitive information in clear text.

Rationale:
Removing Telnet clients helps prevent interception of credentials and data, encouraging the use of secure alternatives like SSH.

Impact:
Pros:

Enhances communication security by removing insecure protocols.
Reduces potential attack vectors.

Cons:

May disrupt legacy workflows relying on Telnet.

Default Value:
Telnet client may be installed by default on some systems.

Pre-requisites:

Root or sudo privileges to uninstall packages.

Remediation:

Test Plan:

Using Linux command line:

1. Check if Telnet client is installed:

RPM-based systems

rpm -q telnet

Debian-based systems:

dpkg -l | grep telnet

2. Confirm presence of Telnet client package.

Implementation Plan:

Using Linux command line:

1. Remove Telnet client package if installed:

RPM-based:

yum remove telnet -y

Debian-based:

apt remove telnet -y

2. Verify removal:

rpm -q telnet  # or dpkg -l | grep telnet

Backout Plan:

Using Linux command line:

1. Reinstall Telnet client if needed:

RPM-based:

yum install telnet -y

Debian-based:

apt install telnet -y

2. Confirm successful installation.

References:

CIS Amazon Linux 2 Benchmark v3.0.0
NIST SP 800-53 Revision 5 - SC-8

Ensure Telnet Client Is Not Installed Print

Test Plan:

Implementation Plan:

Backout Plan:

Related Articles