[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-developers] SSH
- Subject: Re: [cobalt-developers] SSH
- From: Jan Wildeboer <Jan.Wildeboer@xxxxxx>
- Date: Wed Jul 18 18:03:01 2001
- List-id: Discussion Forum for developers on Cobalt Networks products <cobalt-developers.list.cobalt.com>
njd schrieb:
> Should I run RaQ3-RaQ4-OpenSSH-2.9p1-1 on my box as seen on
> http://pkg.nl.cobalt.com/? What are the pro and cons that come along
> with installing this software.
The telnet protocol is a very old way of connecting to a computer. It
was definded in a time that security was not the problem it is today.
Therefore telnet uses NO security at all. Every character you send is
being carried over the net without ANY encryption.
It is therefor extremely simple to install a sniffer that collects user
names and logins. If you login a user test, for example, I would sniff
the user name and the password. When you then do a su to become roor, I
will know the root password. Then I can do with your machine whatever I
like, formatting the hard drive, change all passwords etc.
When your computer is on a network that you cannot fully trust, you
should NEVER use telnet or ftp. Install ssh in this situation.
SSH connects securely, with a high grade of encryption with the same
comfort. "Use SSH" should become something you always do when installing
a computer on a network you can't fully trust. No computer that has a
direct connection to the internet (dialup or leased line doesn't matter)
should be reachable with Telnet.
HTH
Jan Wildeboer
--
| Jan Wildeboer | /\/\/\ seijsener rekreatietechniek bv |
| eBusiness/Lotus Notes | \____ Noorder IJ- en Zeeweg 11-12 |
| Tel. +49 6221 658905 | \ NL1500 EK Zaandam |
| Fax +49 6221 658893 | \/\/\/ http://www.seijsener.nl |