Information
This policy setting ensures that the Telnet Client is not installed on the system. Telnet is a a client-server protocol that predates the TCP protocol.
The recommended state for this setting is: Not Installed.
Rationale:
Telnet allows for the transfer of data without encryption. Therefore, it is a security concern that can lead to data theft or leakage.
Impact:
Data will not be transferrable via the Telnet client.
NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.
Solution
Uninstall the Telnet Client from the system.
GUI:
Navigate to Turn Windows Features on or off
Uncheck the Telnet Client option
Click OK
Note: Windows Features will search for the required files and then uninstall the Telnet Client. A reboot is necessary for the change to take place.
CMD Line
Dism /online /Disable-Feature /FeatureName:Telnet
#Verify the feature has been uninstalled:
Dism /online /Get-FeatureInfo /FeatureName:Telnet
Default Value:
Not Installed.