Re: how secure is mail and ftp and netscape/IE???

To: debian-security@lists.debian.org
Subject: Re: how secure is mail and ftp and netscape/IE???
From: Adam Spickler <adam@whaddu.com>
Date: Wed, 21 Feb 2001 15:40:05 -0500
Message-id: <20010221154005.A28107@whaddu.com>
In-reply-to: <20010221172911.A14938@mantis.autsens.localnet>; from pzn@terra.com.br on Wed, Feb 21, 2001 at 05:29:11PM -0300
References: <5.0.2.1.2.20010221150546.024fa760@bible.ca> <20010221172911.A14938@mantis.autsens.localnet>

What about if you are going from a Windows box to a *nix box.  Is there any way to do secure ftp transfers.  Mail, for me is no problem.  I ssh into my machines and use "Mutt" to deal with email.


...adam





On Wed, Feb 21, 2001 at 05:29:11PM -0300, Pedro Zorzenon Neto wrote:
> Hi Steve,
> 
>   About sending plain text password and files with telnet and ftp:
>   
>   uninstall your 'telnetd' and 'ftp server' and install 'ssh'
>   ssh is real secure and has two usefull commands:
>   'ssh' is a substitute for telnet
>   and 'scp' is not the same thing, but substitutes ftp with some advantages
> 
>   read their manuals and compare.
> 
>     Bye
>     Pedro
> 
> On Wed, Feb 21, 2001 at 03:13:43PM -0500, Steve Rudd wrote:
> > Hello! Steve here,
> > 
> > Well I am one of the family now! My server is Debian 2.2r2. A benign hacker 
> > got me. All he seemed to do was overwrite my root index.html page and 
> > notify the "hackers watchdog" group to take responsibility for the act!
> > 
> > I have some security questions:
> > 
> > 1. How secure is it checking email with eudora pro, given they have not yet 
> > got ssh or any other system that is secure? Since outlook has ssh, is it 
> > worth switching for that? I use a separate user and password for mail and ftp.
> > 
> > 2. Cute ftp is not secure yet, but should be soon.
> > 
> > 3. Using netscape to port to private sections of the website:
> > 
> > www.abc.com:1020/systemconfig/index.html
> > 
> > (for example)
> > 
> > I am asked for a user name and password via netscape/IE
> > 
> > =======
> > 
> > Ok all these things are really transmitting my user name and password via 
> > plain text with no encryption. If I have sudo installed and a sniffer comes 
> > along, they have root access very easily!
> > 
> > Should I be concerned about using email, ftp and IE ?
> > 
> > Steve
> > 
> > 
> > --  
> > To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
> > with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
> > 
> > 
> 
> 
> --  
> To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
> 


-------------------------------------------------
Adam Spickler
Whaddu LLC.
http://www.whaddu.com
WebHosting and Design/Development Unlimited
-------------------------------------------------

Reply to:

Follow-Ups:
- Re: how secure is mail and ftp and netscape/IE???
  - From: Rishi L Khan <rishi@UDel.Edu>
- Re[2]: how secure is mail and ftp and netscape/IE???
  - From: Gaute Gullesen <crazy-b@netcom.no>

References:
- how secure is mail and ftp and netscape/IE???
  - From: Steve Rudd <srudd@bible.ca>
- Re: how secure is mail and ftp and netscape/IE???
  - From: Pedro Zorzenon Neto <pzn@terra.com.br>

Prev by Date: how secure is mail and ftp and netscape/IE???
Next by Date: Re: how secure is mail and ftp and netscape/IE???
Previous by thread: Re: how secure is mail and ftp and netscape/IE???
Next by thread: Re: how secure is mail and ftp and netscape/IE???
Index(es):
- Date
- Thread