[rhn-users] Root login with telnet
Roy S. Nielsen
rsn at lanl.gov
Thu Jun 29 21:08:55 UTC 2006
Hello,
In these days of switched networks, it is possible that "switches" can be
bumped into hub mode.. Some vendors are aware of this and have hardened
thier switches against it.. some have not.
Using telnet is asking for trouble. Have you checked out isc.sans.org/rr
or securitydocs.com?
Might find some useful information there how to deal with the HPUX/ssh
issues as well as why not to use telnet.
-Roy
>
>> Let me get this straight. You actually trust your users? You are
>> certain that they don't have the capability to install a sniffer? Are
>> [...]
>
> You are right, you cannot trust all of your users. But in the days of
> switched networks, if you are in an office environment you cannot see your
> neigbhors network traffic, because the switch simply does not send it to
> your switch port. Therefore it is a switch, not a hub. You only see _your_
> traffic and the broadcasts. And in these there is no passwords. So the
> only
> people who maybe sniff your password is the network stuff who has access
> to
> the switch itself or to the patch panels.
>
> More risky is your PC itself. Maybe you have installed a trojan keylogger
> or
> so, that would be bad, but that would be also bad if you use ssh.
>
> So, I am the same opinion that these root login over telnet in an office
> environment is paranoia. If you telnet over internet to you server that is
> another story.
>
> Am I right? If not please tell me why.
>
> BTW. if you have to use HPUX servers you only can connect via telnet
> because
> the ssh implementation of HPUX is extremly slow, a few minutes (!) until
> the
> ssh connection is established. :-(
>
> Bye
> Thorsten
>
> _______________________________________________
> rhn-users mailing list
> rhn-users at redhat.com
> https://www.redhat.com/mailman/listinfo/rhn-users
>
More information about the rhn-users
mailing list