Disabling Telnet
Good Day;
looking at disabling Telnet - on Windows - Cache 2012,2017. The security scans don't need it on network.
But still leave users able to use `Terminal - direct - on the box should be fine.
am posting here for quick refs (as this is a common security vulnerability out there).
Regards;
Anzelem.
Comments
Hi Anzelem.
If that is the question on how you can disable telnet -- then you should disable service %Service_Telnet in System Administration > Security > Services.
https://cedocs.intersystems.com/ens201813/csp/docbook/DocBook.UI.Page.cls?KEY=GCAS_svcs
Thanks Alex, i did a netstat -anb > openports.txt before and after.
So other than disabling in CACHE, there are no traces at Windows OS level? Any setting related to Telnet that was opened/configured at OS level, when Cache was installed/started?
Regards;
Anzelem.
No other settings.
What %Service_Telnet does is it starts/stops process that listens on port 23 (by default). If you disable this service than process is stopped, so nothing from Caché side is listening on port 23.
Thanks Alex, i got it and configured the way i envisaged.
Regards;
Anzelem.
Depending on your version of Windows, there might be a Windows Telnet service, which you would want to disable using Windows tools.