Re: Dropping telnetd and rsh* for security reasons?

To: debian-user@lists.debian.org
Subject: Re: Dropping telnetd and rsh* for security reasons?
From: Paul Johnson <baloo@ursine.dyndns.org>
Date: Thu, 15 May 2003 06:57:49 -0700
Message-id: <[🔎] 20030515135749.GB15411@ursine.dyndns.org>
Mail-followup-to: debian-user@lists.debian.org
In-reply-to: <[🔎] Pine.LNX.4.53.0305150830120.9732@perrin.socsci.unc.edu>
References: <[🔎] BAY7-F112lZGdOZofu400015c2a@hotmail.com> <[🔎] 0446F316-86C2-11D7-B355-0030657BB07A@clivemenzies.co.uk> <[🔎] 20030515121243.0c856274.nico.meijer@zonnet.nl> <[🔎] 20030515111539.GI10412@ursine.dyndns.org> <[🔎] Pine.LNX.4.53.0305150830120.9732@perrin.socsci.unc.edu>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Thu, May 15, 2003 at 08:31:27AM -0400, Andrew Perrin wrote:
> Please don't do this! I need telnetd for a specific application, for which
> ssh is not practical. I know the risks and accept them. Put a dire warning
> on the screen when installing if you must, but don't drop the opportunity
> just to protect me from myself.

I was thinking slightly more altruistically:  Protecting you (which is
not exclusive to Mr. Perrin by any means) from the rest of the net.
My rationale is basically two-pronged:

1) The various rsh packages have been largely, if not totally,
   replaced by ssh.  Now, since rsh has a tendancy of basically
   shouting whatever goes across it in plaintext across the network,
   rsh isn't exactly a sane item to be keeping on the net if you don't
   like the idea of anybody who 0wnzed a router your connection
   happens to be going through being able to gain access to your box.

2) telnetd's functionality has been entirely replaced by ssh, and Free
   ssh clients are available on damn near every platform out there
   natively, and anything with a java interpreter.  People who know
   they're in a specialty environment could either compile it
   themselves (since it's a really small package) or make a backport
   and submit it to apt-get.org.

- -- 
 .''`.     Baloo Ursidae <baloo@ursine.dyndns.org>
: :'  :    proud Debian admin and user
`. `'`
  `-  Debian - when you have better things to do than fix a system
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)

iD8DBQE+w5zdJ5vLSqVpK2kRAoySAJ9qNhXPoBUrRVV3T9bW/FdJRt2aKQCgg8tw
VHpk11j8iM7asHh3cKmIa1g=
=rgQv
-----END PGP SIGNATURE-----

Reply to:

Follow-Ups:
- Re: Dropping telnetd and rsh* for security reasons?
  - From: Ron Johnson <ron.l.johnson@cox.net>

References:
- Software...!!!
  - From: "Sherwin Kamperveen" <s_kamperveen@hotmail.com>
- Re: Software...!!!
  - From: Clive Menzies <clive@clivemenzies.co.uk>
- Re: Software...!!!
  - From: Nico Meijer <nico.meijer@zonnet.nl>
- Dropping telnetd and rsh* for security reasons?
  - From: Paul Johnson <baloo@ursine.dyndns.org>
- Re: Dropping telnetd and rsh* for security reasons?
  - From: Andrew Perrin <clists@perrin.socsci.unc.edu>

Prev by Date: Re: Using stupid filenames in shell scripts
Next by Date: Gtk-config
Previous by thread: Re: telnet vs ssh [WAS: Re: Dropping telnetd and rsh* for security reasons?]
Next by thread: Re: Dropping telnetd and rsh* for security reasons?
Index(es):
- Date
- Thread