STIG ID: UBTU-18-010105 | SRG: SRG-OS-000074-GPOS-00042 | Severity: high | CCI: | Vulnerability Id: V-219177
Passwords need to be protected at all times, and encryption is the standard method for protecting passwords. If passwords are not encrypted, they can be plainly read (i.e., clear text) and easily compromised.
Remove the telnet package from the Ubuntu operating system by running the following command:
# sudo apt-get remove telnetd
Verify that the telnet package is not installed on the Ubuntu operating system.
Check that the telnet daemon is not installed on the Ubuntu operating system by running the following command:
# dpkg -l | grep telnetd
If the package is installed, this is a finding.