From owner-freebsd-stable Fri Feb 28 7:59:54 2003 Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6ACCD37B401 for ; Fri, 28 Feb 2003 07:59:53 -0800 (PST) Received: from hugo10.ka.punkt.de (kagate.punkt.de [217.29.33.131]) by mx1.FreeBSD.org (Postfix) with SMTP id CF9B243F93 for ; Fri, 28 Feb 2003 07:59:51 -0800 (PST) (envelope-from hausen@punkt.de) Received: from hugo10.ka.punkt.de (localhost [127.0.0.1]) by hugo10.ka.punkt.de (8.12.3/8.12.3) with ESMTP id h1SFxnXR044387; Fri, 28 Feb 2003 16:59:50 +0100 (CET) (envelope-from ry93@hugo10.ka.punkt.de) Received: (from ry93@localhost) by hugo10.ka.punkt.de (8.12.3/8.12.3/Submit) id h1SFxn6k044386; Fri, 28 Feb 2003 16:59:49 +0100 (CET) From: "Patrick M. Hausen" Message-Id: <200302281559.h1SFxn6k044386@hugo10.ka.punkt.de> Subject: Re: Problem with telnet In-Reply-To: <87n0kge6yk.fsf@strauser.com> To: Kirk Strauser Date: Fri, 28 Feb 2003 16:59:49 +0100 (CET) Cc: freebsd-stable@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL92 (25)] MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=US-ASCII Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Hello! Kirk Strauser wrote: > > I updated my machine to the latest stable source yesterday (2/27/03) and > > I'm now getting this message when [attempting to] telneting into it: > > On a side note, if you're interested enough in security to deal with > Kerberos, you should permanently lose telnet. Seriously. SSH does > everything telnet will and doesn't have the gaping security hole of > transferring plaintext data across a network. I can think of a setup where the possibility of bugs in the much more complex sshd application outweighs the remote chance of someone sniffing by quite a margin. Think of ISP infrastructure, a switched network completely under your control. OpenSSH has had its share of security holes and while I generally agree with you that it's a good idea to use ssh where appropriate, I don't share the general "telnet is bad because it's plain text hysteria" ;-) Just my $.02 Patrick M. Hausen Technical Director -- punkt.de GmbH Internet - Dienstleistungen - Beratung Scheffelstr. 17 a Tel. 0721 9109 -0 Fax: -100 76135 Karlsruhe http://punkt.de To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message