Re: Bug#192416: ITP: rsh-redone -- Reimplementation of remote shell tools.
On Thu, May 08, 2003 at 01:24:58PM +0200, Guus Sliepen wrote:
> On Thu, May 08, 2003 at 01:56:18PM +0300, Lars Wirzenius wrote:
>
> > > Rsh-redone is a reimplementation of the remote shell clients and
> > > servers. It is written from the ground up to avoid the bugs found in
> > > the standard clients and servers.
> >
> > Such as transmitting passwords in cleartext or relying on IP numbers for
> > authentication?
>
> Sigh, you're obviously trolling.
So that would be a "no", then?
> If you have a network that is already
> secure (for example, behind a decent firewall, or a VPN), using ssh only
> means lots of unnecessary overhead. The lack of security in rsh is not a
> bug, it is just the way it is supposed to work.
Security should be end-to-end, not point-to-point. The sheer number of
times a site has been compromised because their "secure" network
wasn't and somebody was using rsh...
People who can create a genuinely secure network are invited to start
a consultancy firm; they could make millions.
--
.''`. ** Debian GNU/Linux ** | Andrew Suffield
: :' : http://www.debian.org/ | Dept. of Computing,
`. `' | Imperial College,
`- -><- | London, UK
Reply to: