Access Security - Disable insecure or unnecessary access services (telnet, J-Web over HTTP, FTP, etc.) - xnm-clear-text

Information

Access services are considered insecure when communication to the device is unencrypted. Clear-text communications are susceptible to sniffing, replay, and packet capture attacks.

Solution

Disable xnm-clear-text as an insecure service.

user@host# edit system services
user@host# delete xnm-clear-text

See Also

http://www.juniper.net/us/en/training/jnbooks/day-one/fundamentals-series/hardening-junos-devices-checklist/

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-7b.

Plugin: Juniper

Control ID: 5a3ab4a3bdbdb90a0035cbc816b3fa4364d21ed51d9d724ad2f7932ed3d340f9