criticalservicesverified ✓rollback-safe
Disable telnet server
service-disable-telnet · RHEL ≥ 8 · 1 impl
Description
Telnet is an insecure protocol that transmits data including passwords in clear text. SSH should be used instead.
Rationale
Telnet transmits all data unencrypted, including credentials. An attacker can intercept telnet sessions and capture passwords.
Check → Remediate
Checkservice_state
- name:
- telnet.socket
- active:
- false
- enabled:
- false
Remediateservice_masked
- name:
- telnet.socket
Framework references
CIS
rhel8 2.1.16rhel9 2.1.15rhel10 2.1.15
NIST 800-53
CM-7IA-5
Live verification
rhel10:checkrhel8:checkrhel9:check
#service#networking#telnet#attack-surface