RE: [cobalt-users] telnet access to users?

["Andrew D. Forkes" <Andrew.Forkes@xxxxxxxxxxxxxx>]

Telnet itself is inherently insecure, be aware of the security issues -

1.	Telnet access can be 'sniffed' very easily by attackers.
2.	Everything entered in a telnet session is broadcast in 'plain text'
(passwords, account usernames, IP addresses - the lot)
3.	Once an attacker has the information, your machine is compromised.  And
tracing an attack is difficult as you don't usually know you have been
attacked.
4.	If you do implement telnet access, ensure you enforce a strict practice
of password changing (although not from telnet - obviously!)
5.	Best bet - disable telnet for ALL users and implement a Secure (SSL)
Telnet app.

You can get hold of secure telnet clients, but I'm unsure as to the support
for them on the RaQ2 - anyone know ?

Andrew

> -----Original Message-----
> From: cobalt-users-admin@xxxxxxxxxxxxxxx
> [mailto:cobalt-users-admin@xxxxxxxxxxxxxxx]On Behalf Of Rob Rivas
> Sent: 14 January 2000 00:41
> To: cobalt-users@xxxxxxxxxxxxxxx
> Subject: [cobalt-users] telnet access to users?
>
>
> is it a good idea to let users have telnet access to their accounts?
>
> I wouldnt see any problem with it since they will only have
> access to their
> directory...
>
> thanks
> rob
> ______________________________________________________
> Get Your Private, Free Email at http://www.hotmail.com
>
>
> _______________________________________________
> cobalt-users mailing list
> cobalt-users@xxxxxxxxxxxxxxx
> http://list.cobalt.com/mailman/listinfo/cobalt-users
>