From owner-freebsd-questions@FreeBSD.ORG Sun Apr 8 19:53:18 2007 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 920BE16A421 for ; Sun, 8 Apr 2007 19:53:18 +0000 (UTC) (envelope-from infofarmer@gmail.com) Received: from nz-out-0506.google.com (nz-out-0506.google.com [64.233.162.229]) by mx1.freebsd.org (Postfix) with ESMTP id 39EE113C46C for ; Sun, 8 Apr 2007 19:53:18 +0000 (UTC) (envelope-from infofarmer@gmail.com) Received: by nz-out-0506.google.com with SMTP id r28so927233nza for ; Sun, 08 Apr 2007 12:53:17 -0700 (PDT) DKIM-Signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:sender:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references:x-google-sender-auth; b=TTn/zwdiwfVm9UUfWrjBYCmM/wf8JukF+rQD6DC+b8KTT35Fi3iuJFaDisqNXAKFTNYHJt32BliwDahgnimTnHMvWqgUTWkmta4G3C/gHIsa0MfLqWibYUEcGA5eFja5xHbx2l3B5IyzETqYlt9U9RpbXoNacpeXzb3q0XLJfZs= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:sender:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references:x-google-sender-auth; b=CiYtXDKx9bdFiUJZrtsGekqzzqoc7G40qFjYCUjF1PK/417/JObRyjD8CmRrLz6JiGAhSt2j0V0LavXUjuue7LcpDtmVKd5ySwot7jISjxfYBMPhks+qTrHwGEQWjFDq4k1ZOuMUtksc/FTEDH8zdep7+Ch7kJ9Lk5asFgTUMGk= Received: by 10.114.173.15 with SMTP id v15mr2040134wae.1176061996699; Sun, 08 Apr 2007 12:53:16 -0700 (PDT) Received: by 10.114.201.2 with HTTP; Sun, 8 Apr 2007 12:53:16 -0700 (PDT) Message-ID: Date: Sun, 8 Apr 2007 23:53:16 +0400 From: "Andrew Pantyukhin" Sender: infofarmer@gmail.com To: "Kevin Kinsey" In-Reply-To: <4616C29A.4040706@daleco.biz> MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <7d4f41f50704050142v9c73a17tb1812f218ea4416@mail.gmail.com> <4615030B.5040809@daleco.biz> <20070405191526.GA94631@gizmo.acns.msu.edu> <4616C29A.4040706@daleco.biz> X-Google-Sender-Auth: 60dec598a2890ed3 Cc: Jerry McAllister , freebsd-questions@freebsd.org Subject: Re: Should sudo be used? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 08 Apr 2007 19:53:19 -0000 On 4/7/07, Kevin Kinsey wrote: > Jerry McAllister wrote: > > Also, although telnet is a hole nowdays for logging in to a system with > > an id and password for the very reasons you have given, it still has > > a use. You can use it to easily poke at a port and check the response > > to see if something is up and working. Of course, in that case you > > would probably not be sending an id and password, just some common > > handshaking strings that don't reveal any secrets to anyone. > > This is really a different issue from what was the OP or the intent > > of the wiki article, of course. > > Right; the intent, as I see it, is to pound through people's (potential > new *BSD system admins) heads the fact that you don't use telnet for > remote logins/remote shell work. Well actually, we're looking forward to telnet start-tls RFC. It will provide for tighter integration of PKI. I'll be glad to see the day when all I need for authentication is TLS certs.