[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Turn Windows features on or off: Telnet Server

ID: oval:gov.nist.usgcb.windowsseven:def:20004Date: (C)2012-04-13   (M)2023-07-14
Class: COMPLIANCEFamily: windows




Telnet Server hosts the remote sessions for Telnet clients. When Telnet Server is running on a computer, users can connect to the server with a Telnet client from a remote computer. Telnet Server is implemented in Windows as a service that can be configured to always run, even when no one is logged on to the server. Telnet servers exchange data by using unencrypted characters (plaintext). If you are using password authentication, then your user name and password are not included. If you use NTLM authentication, then your user name and password are encrypted. However the rest of the Telnet session is still plaintext. Anyone with a network protocol analyzer with access to the network media can see the information in the Telnet session. The primary option for securing your Telnet traffic is to use Internet Protocol security (IPsec), a security protocol that works at the IP layer, independent of Telnet. You can use Windows Firewall with Advanced Security to configure inbound and outbound rules that require encryption. This can include Telnet traffic, as long as both computers support IPsec. Fix: (1) CTL: Control Panel\Programs and Features\Turn Windows features on or off\Telnet Server (2) REG: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\tlntsvr\*

Platform:
Microsoft Windows 7
Reference:
CCE-18739-3
CPE    1
cpe:/o:microsoft:windows_7
CCE    1
CCE-18739-3
XCCDF    1
xccdf_gov.nist_benchmark_USGCB-Windows-7

© SecPod Technologies