Date: Mon, 6 May 2002 16:31:42 -0700 (PDT) From: Jason Stone <jason@shalott.net> To: <security@freebsd.org> Subject: Re: Telnet Exploit Message-ID: <20020506162611.R6630-100000@walter> In-Reply-To: <GTP3YE3JSQGUYEIE2F0SOTH3D3KQNJKUJJYERK0S@ziplip.com>
next in thread | previous in thread | raw e-mail | index | archive | help
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 > > Why? Do you think ssh is more secure? It may not be. Just think > > about the complexity of ssh. > > Are you for real? Have you ever sniffed a connection between two > machines using ssldump? When looking at a telnet or ftp connection, > it shows everything, clear as day. "Blah blah you'd have to be crazy to use telnet, it's plaintext! Use ssh!" "Except blah blah ipsec, telnet-over-ssl, etc, openssh has a history of bad bugs, push crypto down out of the application layer and keep your high-layer apps simple!" This thread is not new, and not especially relevent here. -Jason ----------------------------------------------------------------------- I worry about my child and the Internet all the time, even though she's too young to have logged on yet. Here's what I worry about. I worry that 10 or 15 years from now, she will come to me and say "Daddy, where were you when they took freedom of the press away from the Internet?" -- Mike Godwin -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) Comment: See https://private.idealab.com/public/jason/jason.gpg iD8DBQE81xJeswXMWWtptckRAtVaAJ9PIBl+DhXVigcMJvrlwwxpkY8iaQCfaVns mKOJKttWcilCZMbmrs1xLDA= =olIv -----END PGP SIGNATURE----- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020506162611.R6630-100000>