Regarding root access to telnet
inode0
inode0 at gmail.com
Wed Feb 22 18:46:06 UTC 2006
On 2/22/06, Tobias Speckbacher <TSpeckbacher at quova.com> wrote:
> However, it is not that telnet as a service is inherently insecure,
> however, the protocol is. (software vs. network, I am sure someone is
> going to take this out of context)
>
> The main concern regarding telnet is the transmission of data in clear
> text.
> This means anyone in between you and the server can intercept/alter
> session data, making it trivial to sniff passwords or perform other
> malicious activities with your session.
>
> As it is using anything less than ssh in my opinion is a severe
> violation/disregard of best practices.
If you have a kerberos environment using kerberized telnet does not
suffer from the above problems, or at least does not need to suffer
from them.
John
More information about the redhat-list
mailing list