Remove telnet Clients (ubuntu2404)

Documentos > Datadog Security > OOTB Rules > Remove telnet Clients (ubuntu2404)

Esta página aún no está disponible en español. Estamos trabajando en su traducción.
Si tienes alguna pregunta o comentario sobre nuestro actual proyecto de traducción, no dudes en ponerte en contacto con nosotros.

Description

The telnet client allows users to start connections to other systems via the telnet protocol.

Rationale

The telnet protocol is insecure and unencrypted. The use of an unencrypted transmission medium could allow an unauthorized user to steal credentials. The ssh package provides an encrypted session and stronger security and is included in Ubuntu 24.04.

Remediation

Shell script

The following script can be run on the host to remediate the issue.

#!/bin/bash

# CAUTION: This remediation script will remove inetutils-telnet
# from the system, and may remove any packages
# that depend on inetutils-telnet. Execute this
# remediation AFTER testing on a non-production
# system!


DEBIAN_FRONTEND=noninteractive apt-get remove -y "inetutils-telnet"

Ansible playbook

The following playbook can be run with Ansible to remediate the issue.

- name: 'Remove telnet Clients: Ensure inetutils-telnet is removed'
  ansible.builtin.package:
    name: inetutils-telnet
    state: absent
  tags:
  - disable_strategy
  - low_complexity
  - low_disruption
  - low_severity
  - no_reboot_needed
  - package_inetutils-telnet_removed