Re: Bug#192416: ITP: rsh-redone -- Reimplementation of remote shell tools.
On Thu, May 08, 2003 at 09:41:38AM -0500, Steve Greenland wrote:
> On 08-May-03, 08:22 (CDT), Oliver Kurth <oku@masqmail.cx> wrote:
> >
> > So if you are consequent, we should immediately stop distributing ftp,
> > mail servers and clients that send clear text mails, web servers and
> > browsers, etc...
>
> None of those provide shell access to user accounts and/or require
> sending passwords in the clear as a basic part of the protocol. (FTP
> comes the closest, but anonymous access is a legitimate use.)
FTP *often* sends passwords in the clear. rsh does not *have* to do that,
either. rsh does not have to provide access to user accounts. It can be
run in a chroot or a vserver.
> protocol for rcp-like file copies that provides secure authentication
> without encrypting the actual data transfer.
Which seems like only a limited use, since you still have no idea that the
data you're getting is unmodified.
> We shouldn't provide a new version of the r-tools, for the same reason
> we don't leave loaded pistols lying around nursey-school playgrounds.
Your argument sounds like "we should ban all pistols because adding safety
mechanisms isn't completely effective against accidents."
Reply to: