Re: telnet vs ssh [WAS: Re: Dropping telnetd and rsh* for security reasons?]
On Thu, 15 May 2003, Andrew Perrin wrote:
> The principle, too, seems important: the reason for dropping telnetd would
> be to protect users from themselves. Why should debian be in that
> practice? Warn us, sure, but don't take away options just because you
> think they're bad for us.
>
> ap
What about leaving the service not running on install, with a warning that
the user will have to edit some file(/etc/init.d/telnetd?) to get it to
start, ala dhcpd? And in that file will be a warning about the security
implications, etc etc.
Doesn't break anything, and stops someone from just installing telnet and
going off and using it.
Mike
Reply to: