Still, logins are tracked.  If a system gets messed up, and "username" logged in
from computer43.network.com, and su'd to root all at about the same time, you can
track it down.  As far as network sniffers go, you had better stop using POP on
that same network, because most Unix systems have the same POP password as the
system account. IMAP is the same. So are many other utilities used in this
setting.  FTP is another common one.   Generally, though- there is the concept of
a "Trusted Network" where you dont have those same concerns.

jay

-----Original Message-----
From: tclug-list-admin at mn-linux.org
[mailto:tclug-list-admin at mn-linux.org]On Behalf Of Florin Iucha
Sent: Friday, August 17, 2001 9:57 AM
To: tclug-list at mn-linux.org
Subject: Re: [TCLUG] restarting Redhat 7x via telnet


On Fri, Aug 17, 2001 at 09:32:17AM -0500, Jay Kline wrote:
> Not that I disagree that SSH is more secure than telnet, but telnet has its
place
> too.  Mostly, not on the Internet on a trusted LAN.  I work for a company that
> deals with hundreds of unix servers on a day to day basis (all over the
country),
> and they all run telnet.  Its not something that can be changed easily, because
> they are not our servers, they are our customers.  But almost none of them have
> telnet accessible from the Internet, you can only get into their networks via
> modem.  Telnet is well established (there are clients for it preinstalled on
most
> every OS- save old Mac) and as long as it is used in the right environments,
thats
> fine.  Lets not push for the demise of telnet, lets push for proper education on
> when to run it. (and the internet is NOT a place to run it)

You forget about malicious users... Anybody can set up a snifer on a corporate
network and most of the time the sys/netadmins won't notice.

florin

--

"If it's not broken, is because you are not fixing it enough."

41A9 2BDE 8E11 F1C5 87A6  03EE 34B3 E075 3B90 DFE4
_______________________________________________
tclug-list mailing list
tclug-list at mn-linux.org
https://mailman.mn-linux.org/mailman/listinfo/tclug-list