Osamu Aoki wrote: ...
We have SSH as best practice. I think there is telnet over ssl too (never used). Why you want shell acces to another machne over tcp? If you are knowingly doing this, I am curious what kind of sitation justify such thing? Some kind of user-mode-linux etc? Still, you can use unsecure telnet. Osamu
Telnet doesn't have to insecure. telnetd-ssl is available in Debian and can be configure to only allow encrypted sessions. The latest C-Kermit (see http://www.columbia.edu/kermit/ ) featuring secure telnet protocols can be built from source using the checkinstall package and works well as a scriptable client.
I only wish that the person who did the Secure Remote Password patches for OpenSSH updated them to the latest portable version. With that, I had SSH access to a machine and was reasonable confident that others wouldn't be trying to attack the machine using ssh with SRP authentication.