[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: Regarding root access to telnet



On 2/22/06, Tobias Speckbacher <TSpeckbacher quova com> wrote:
> However, it is not that telnet as a service is inherently insecure,
> however, the protocol is. (software vs. network, I am sure someone is
> going to take this out of context)
>
> The main concern regarding telnet is the transmission of data in clear
> text.
> This means anyone in between you and the server can intercept/alter
> session data, making it trivial to sniff passwords or perform other
> malicious activities with your session.
>
> As it is using anything less than ssh in my opinion is a severe
> violation/disregard of best practices.

If you have a kerberos environment using kerberized telnet does not
suffer from the above problems, or at least does not need to suffer
from them.

John



[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]