Re: telnetd vulnerability from BUGTRAQ

To: debian-security@lists.debian.org
Subject: Re: telnetd vulnerability from BUGTRAQ
From: Jose Luis Domingo Lopez <debian-security@24x7linux.com>
Date: Sun, 26 Sep 2004 12:03:41 +0200
Message-id: <[🔎] 20040926100341.GA14053@localhost>
Mail-followup-to: debian-security@lists.debian.org
In-reply-to: <[🔎] 20040924221509.GF4491@infidel.spots.ab.ca>
References: <[🔎] Pine.LNX.4.44.0409242200160.16973-100000@herring.sandwich.net> <[🔎] 20040924221509.GF4491@infidel.spots.ab.ca>

On Friday, 24 September 2004, at 16:15:09 -0600,
s. keeling wrote:

> Is anyone still using telnet when there's ssh?  Why?  I wouldn't even
> use it inside my own firewalled LAN.  ssh is just better.
> 
Yes, many people have a curious sense of "computer security". They ask
for mega-cool (and MEGA expensive) hardware commercial firewalls but
keep on using telnet to access remote boxes (even using "root" or
similarly privileges accounts).

Maybe customers just ask for what we are offering them, and there seems
to be little market (in money terms) for SSH implementations, so they
are told about the needs of "high-end" firewalls and IDS, but not warned
about simpler, cheaper and more important things like not using telnet
(or even r-commands).

Greetings.

-- 
Jose Luis Domingo Lopez
Linux Registered User #189436     Debian Linux Sid (Linux 2.6.9-rc1)

Reply to:

References:
- telnetd vulnerability from BUGTRAQ
  - From: James Renken <jrenken@sandwich.net>
- Re: telnetd vulnerability from BUGTRAQ
  - From: "s. keeling" <keeling@spots.ab.ca>

Prev by Date: Re: telnetd vulnerability from BUGTRAQ
Next by Date: Re: telnetd vulnerability from BUGTRAQ
Previous by thread: Re: telnetd vulnerability from BUGTRAQ
Next by thread: YESSSSSSSSSSSSSSSSSSS
Index(es):
- Date
- Thread