Re: telnet break-in
- To: email@example.com, firstname.lastname@example.org
- Cc: Nathan E Norman <email@example.com>, Ossama Othman <firstname.lastname@example.org>, Debian User List <email@example.com>
- Subject: Re: telnet break-in
- From: Hamish Moffatt <firstname.lastname@example.org>
- Date: Tue, 25 Aug 1998 00:38:46 +1000
- Message-id: <19980825003846.B9778@yodeller.rising.com.au>
- Mail-followup-to: email@example.com, firstname.lastname@example.org, Nathan E Norman <email@example.com>, Ossama Othman <firstname.lastname@example.org>, Debian User List <email@example.com>
- In-reply-to: <Pine.SOL.3.96.980824090036.28723Cfirstname.lastname@example.org>; from M.C. Vernon on Mon, Aug 24, 1998 at 09:02:14AM +0100
- References: <Pine.LNX.3.96.980823135605.4911Nemail@example.com> <Pine.SOL.3.96.980824090036.28723Cfirstname.lastname@example.org>
On Mon, Aug 24, 1998 at 09:02:14AM +0100, M.C. Vernon wrote:
> On Sun, 23 Aug 1998, George Bonser wrote:
> > On Sun, 23 Aug 1998, Nathan E Norman wrote:
> > > : And dont forget the r services ... rlogin, rsh, rexec, etc.
> > >
> > > With the availability of ssh you're insane to leave these enabled at all
> > > (especially rexec)
> > Unless you are using them, you are insane to have them enabled at all.
> Unfortunatly, I have yet to find a W(SPIT)95 bit of (free) software that
> will do ssh-keygen and provide ssh for my users, some of whom have to use
> various different college machines....
> So I have to leave them enabled.
How about just plain telnet? Even though you'd be transmitting passwords
in plain text, that might be better than rsh, which will let you in
without even that if you can spoof it properly.
Hamish Moffatt, email@example.com, firstname.lastname@example.org, email@example.com
Latest Debian packages at ftp://ftp.rising.com.au/pub/hamish. PGP#EFA6B9D5
CCs of replies from mailing lists are welcome. http://hamish.home.ml.org