Fletcher E Kittredge wrote:
>
> > Humm. Access from both can be controlled using the access lists. Neither
> > encrypts the data by default. Not sure where you get "significant"
> > from...
>
> How do access lists stop my passwords traveling over a clear text telnet
> session being sniffed?
They don't. But if you are using TFTP, you still need to Telnet to the
device and issue a "copy tftp xxx" anyway so in both cases your password
is exposed. In other words, there is no significant security difference
between either method.
If you are going to use a terminal session rather than Telnet, you are
better off pasting as that removes all traffic from the wire.
Cheers,
Chris
--
**************************************
[EMAIL PROTECTED]
* Multiprotocol Network Design & Troubleshooting
http://www.amazon.com/exec/obidos/ASIN/0782120822/geekspeaknet
* Mastering Network Security
http://www.amazon.com/exec/obidos/ASIN/0782123430/geekspeaknet
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
