Check: WN12-SV-000105
Microsoft Windows Server 2012/2012 R2 Domain Controller STIG:
WN12-SV-000105
(in versions v3 r7 through v2 r7)
Title
The Telnet service must be disabled if installed. (Cat II impact)
Discussion
Unnecessary services increase the attack surface of a system. Some of these services may not support required levels of authentication or encryption.
Check Content
Verify the Telnet (tlntsvr) service is not installed or is disabled. Run "Services.msc". If the following is installed and not disabled, this is a finding: Telnet (tlntsvr)
Fix Text
Remove or disable the Telnet (tlntsvr) service.
Additional Identifiers
Rule ID: SV-226357r794641_rule
Vulnerability ID: V-226357
Group Title: SRG-OS-000096-GPOS-00050
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
Number | Definition |
---|---|
CCI-000382 |
The organization configures the information system to prohibit or restrict the use of organization-defined functions, ports, protocols, and/or services. |
Controls
Controls tied to check. These are derived from the CCIs shown above.
Number | Title |
---|---|
CM-7 |
Least Functionality |