[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: hacked?

On Thu, 27 Apr 2000 09:02:05 -0400 (EDT), you wrote:
>On the other hand, I do not feel as strongly as other posters that telnet
>needs to be disabled in order to have a secure machine.  Strong passwords
>will work just as well.  I have an account on a large Solaris network
>where telnet has been open for ages, and will continue to be.  The passwd
>program in *incredibly* anal about ensuring that all passwords are
>complex.  To my knowledge there has never been a significant security
>breach on this network.

You have been lucky. Even secure passwords can be sniffed, and telnet
sessions already established can be hijacked. That way, the attacker
doesn't even have to wait for your password to fly around.


-------------------------------------- !! No courtesy copies, please !! -----
Marc Haber          |   " Questions are the         | Mailadresse im Header
Karlsruhe, Germany  |     Beginning of Wisdom "     | Fon: *49 721 966 32 15
Nordisch by Nature  | Lt. Worf, TNG "Rightful Heir" | Fax: *49 721 966 31 29

Reply to: