Skip to main content

Remediation Steps

Follow the steps below to remediate this finding on Windows.

  1. Disable the Telnet Server Windows feature:

    Dism /Online /Disable-Feature /FeatureName:TelnetServer

  2. Or via PowerShell:

    Disable-WindowsOptionalFeature -Online -FeatureName TelnetServer

  3. Ensure Remote Desktop (RDP) or WinRM with HTTPS is used as the encrypted management alternative.

  4. Block port 23 in Windows Firewall:

    New-NetFirewallRule -DisplayName "Block Telnet" -Protocol TCP -LocalPort 23 -Direction Inbound -Action Block
Back to top