Navigate

Check: GEN003850

AIX 6.1 SECURITY TECHNICAL IMPLEMENTATION GUIDE: GEN003850 (in versions v1 r14 through v1 r10)

Title

The telnet daemon must not be running. (Cat I impact)

Discussion

The telnet daemon provides a typically unencrypted remote access service which does not provide for the confidentiality and integrity of user passwords or the remote session. If a privileged user were to log on using this service, the privileged user password could be compromised.

Check Content

Consult vendor documentation to determine the method for determining if the telnet daemon is running. If the system uses inetd, use the following procedure. # grep -v '^#' /etc/inetd.conf | grep telnet If an entry is returned, the telnet daemon is running. If the telnet daemon is running, this is a finding.

Fix Text

Edit the /etc/inetd.conf file and comment out the telnet line. Reload the inetd process. # refresh -s inetd

Additional Identifiers

Rule ID: SV-38953r1_rule

Vulnerability ID: V-24386

Group Title: GEN003850

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.

Number	Definition
CCI-000197	The information system, for password-based authentication, transmits only cryptographically-protected passwords.

Controls

Controls tied to check. These are derived from the CCIs shown above.

Number	Title
IA-5 (1)	Password-Based Authentication