From owner-freebsd-stable Fri Feb 28 12:13:59 2003 Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 635F537B401 for ; Fri, 28 Feb 2003 12:13:57 -0800 (PST) Received: from kanga.honeypot.net (kanga.honeypot.net [208.162.254.122]) by mx1.FreeBSD.org (Postfix) with ESMTP id DD6DE43F85 for ; Fri, 28 Feb 2003 12:13:52 -0800 (PST) (envelope-from kirk@strauser.com) Received: from pooh.strauser.com (kirk@pooh.honeypot.net [10.0.5.128]) by kanga.honeypot.net (8.12.7/8.12.7) with ESMTP id h1SKDjxc090281 for ; Fri, 28 Feb 2003 14:13:45 -0600 (CST) (envelope-from kirk@strauser.com) To: freebsd-stable@freebsd.org Subject: Re: Problem with telnet From: Kirk Strauser Date: Fri, 28 Feb 2003 14:13:41 -0600 In-Reply-To: <200302281559.h1SFxn6k044386@hugo10.ka.punkt.de> ("Patrick M. Hausen"'s message of "Fri, 28 Feb 2003 16:59:49 +0100 (CET)") Message-ID: <874r6oduyy.fsf@strauser.com> Lines: 25 X-Mailer: Gnus/5.090015 (Oort Gnus v0.15) Emacs/21.2 References: <200302281559.h1SFxn6k044386@hugo10.ka.punkt.de> MIME-Version: 1.0 Content-Type: multipart/signed; boundary="=-=-="; micalg=pgp-sha1; protocol="application/pgp-signature" Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG --=-=-= Content-Transfer-Encoding: quoted-printable At 2003-02-28T15:59:49Z, "Patrick M. Hausen" writes: > I can think of a setup where the possibility of bugs in the much more > complex sshd application outweighs the remote chance of someone sniffing > by quite a margin. Honestly, I can't think of such a situation, but to each his own. > Think of ISP infrastructure, a switched network completely under your > control. Think of a cracker who breaks into a workstation and starts exploring... > OpenSSH has had its share of security holes and while I generally agree > with you that it's a good idea to use ssh where appropriate, I don't share > the general "telnet is bad because it's plain text hysteria" ;-) Once again, to each his own. Then again, I'm not as hardcore as my mentor, who insisted that any password that was accidentally sent in plaintext even once had to immediately be changed. Not that I'm arguing with his logic or think it was overkill. =2D-=20 Kirk Strauser In Googlis non est, ergo non est. --=-=-= Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (GNU/Linux) iD4DBQA+X8L55sRg+Y0CpvERAvUxAJ9ljM4mekaM7uETMiDs3ZeZ8UFlhQCTBltG PKNI/FYhpj7HbFE/8etHRw== =PWz7 -----END PGP SIGNATURE----- --=-=-=-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message