On Tuesday, 03/02/2004 at 10:35 EST, "Post, Mark K" <[EMAIL PROTECTED]> wrote: > I would expect that telnet is not enabled by default, which is a good thing, > since it is inherently insecure.
I DO wish people wouldn't say things like that. While folks may *choose* not to use (or ignore the existence of) a secure telnet implementation, they do exist. Just wrap telnet in an SSL/TLS wrapper and you can use secure telnet clients (e.g. IBM PCOMM, Seagull Bluzone 3270, ...). On a side note, remember that encryption levels can always be negotiated to "none". Be sure your sessions really are secure. This usually means telling one side or the other that "none" is not one of the available encryption suites. Alan Altmark Sr. Software Engineer IBM z/VM Development
