From owner-freebsd-security Thu Mar 28 13:44:22 2002 Delivered-To: freebsd-security@freebsd.org Received: from nyogtha.unknownkadath.net (nyogtha.unknownkadath.net [209.153.153.179]) by hub.freebsd.org (Postfix) with ESMTP id 4EC0437B416 for ; Thu, 28 Mar 2002 13:44:10 -0800 (PST) Received: from cm (grebner.com [198.109.164.203]) by nyogtha.unknownkadath.net (8.12.2/8.12.2) with SMTP id g2SLuXs0040005; Thu, 28 Mar 2002 16:56:34 -0500 (EST) From: "Asenchi" To: "kerberus" , "Adam" Cc: Subject: RE: SSH or Telnet? Date: Thu, 28 Mar 2002 16:44:08 -0500 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) In-Reply-To: <1017351528.4217.64.camel@vaio.microbsd.net> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I am a little surprised by this as well. Encrypted passwords to me would mean at least a little more secure than clear text passwords. Anything that can be sniffed as easy as telnet should not be used. wow, now i have seen everything! :) asenchi -----Original Message----- From: owner-freebsd-security@FreeBSD.ORG [mailto:owner-freebsd-security@FreeBSD.ORG]On Behalf Of kerberus Sent: Thursday, March 28, 2002 4:39 PM To: Adam Cc: security@FreeBSD.ORG Subject: Re: SSH or Telnet? Am I actually reading this on a security list of all places ???? Are you actually suggesting the user use something that sends data over the wire such as the username, and password in clear text usable ?? Doesnt the thought of this scare you??? you telnet to remote system, someone bewtween you and remote system, say at your ISP is sniffing the wire for whatever reason, as your logging into the remote box, and guess what, now they have your access to that same box. Dont use telnet, it is very insecure, use ssh where everything is encrypted!! On Thu, 2002-03-28 at 16:33, Adam wrote: > I would highly suggest that you use telnet. As long as you keep it updated > and patched you shouldnt have any problems with it.. > > Adam > EcommIS.net > "Designing Your Future" To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message