2025-08-19 18:03:12 +05:30
id : telnet-client
2025-06-18 23:58:37 -07:00
info :
name : Ensure Telnet Client is Not Installed
author : Th3l0newolf
2025-08-19 18:03:12 +05:30
severity : info
2025-06-18 23:58:37 -07:00
description : |
2025-08-19 18:03:12 +05:30
The telnet and inetutils-telnet packages provide a Telnet client for remote access.Since Telnet uses unencrypted communication, these packages should not be installed to reduce the risk of credential theft and unauthorized access.
2025-06-18 23:58:37 -07:00
remediation : |
2025-08-19 18:38:32 +05:30
Ensure telnet and inetutils-telnet packages are not installed unless explicitly required.To remove them, run : sudo apt-get remove telnet inetutils-telnet -y
2025-06-18 23:58:37 -07:00
reference :
- https://www.cisecurity.org/benchmark/ubuntu_linux
metadata :
verified : true
2025-08-28 23:41:32 +05:30
tags : cis,local,cisecurity,audit,linux,ubuntu,telnet
2025-06-18 23:58:37 -07:00
self-contained : true
code :
- engine :
2025-08-28 23:41:32 +05:30
- sh
2025-06-18 23:58:37 -07:00
- bash
args :
- "-c"
- |
# Check if telnet or inetutils-telnet package is installed
if dpkg-query -W -f='${Package} ${Status}\n' telnet inetutils-telnet 2>/dev/null | grep -q "install ok installed"; then
2025-08-19 18:03:12 +05:30
echo "[cis-telnet-client-check:Policy-Fail] [Telnet client is installed] [CIS_FAIL]"
2025-06-18 23:58:37 -07:00
else
2025-08-19 18:03:12 +05:30
echo "[cis-telnet-client-check:Policy-Pass] [Telnet client is not installed] [CIS_PASS]"
2025-06-18 23:58:37 -07:00
fi
matchers :
- type : word
name : policy-pass
words :
- "Policy-Pass"
- type : word
name : policy-fail
words :
2025-08-21 12:45:03 +00:00
- "Policy-Fail"
2025-08-29 10:06:03 +00:00
# digest: 4b0a00483046022100b01ae626cf301187f1100bc702af3f84281c84e01327ced2a652005464591dbc02210086c8454cbea9e2c67672a569489079b1a7bd0612571c8b43f7f51ed5f4fc5ebb:922c64590222798bb761d5b6d8e72950
