Re: telnet vs ssh [WAS: Re: Dropping telnetd and rsh* for security reasons?]

To: <debian-user@lists.debian.org>
Subject: Re: telnet vs ssh [WAS: Re: Dropping telnetd and rsh* for security reasons?]
From: Mike Dresser <mdresser_l@windsormachine.com>
Date: Thu, 15 May 2003 10:11:30 -0400 (EDT)
Message-id: <[🔎] Pine.LNX.4.33.0305151009540.30600-100000@router.windsormachine.com>
In-reply-to: <[🔎] Pine.LNX.4.53.0305150926320.9732@perrin.socsci.unc.edu>

On Thu, 15 May 2003, Andrew Perrin wrote:

> The principle, too, seems important: the reason for dropping telnetd would
> be to protect users from themselves. Why should debian be in that
> practice? Warn us, sure, but don't take away options just because you
> think they're bad for us.
>
> ap

What about leaving the service not running on install, with a warning that
the user will have to edit some file(/etc/init.d/telnetd?) to get it to
start, ala dhcpd?  And in that file will be a warning about the security
implications, etc etc.

Doesn't break anything, and stops someone from just installing telnet and
going off and using it.

Mike

Reply to:

References:
- Re: telnet vs ssh [WAS: Re: Dropping telnetd and rsh* for security reasons?]
  - From: Andrew Perrin <clists@perrin.socsci.unc.edu>

Prev by Date: Re: xfree86 'no screens' error on powerpc-sid
Next by Date: How to add a new USB device to usbmgr/hotplug?
Previous by thread: Re: telnet vs ssh [WAS: Re: Dropping telnetd and rsh* for security reasons?]
Next by thread: Re: telnet vs ssh [WAS: Re: Dropping telnetd and rsh* for security reasons?]
Index(es):
- Date
- Thread