-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Swapana Ghosh wrote:
| Hi
|
| One of our client is very much stick to use the telnet in
| their server. But for security purpose we are trying to convince them,
| but failed.
| So if we change the telnet port and ask them to use - is it
ok? I am
| asking for security level only...
|
| Thanks
| -Swapna
|
There is no way to secure telnet. Changing the port will not do anything
other than try to make it more obscure. Anyone trying to root the system
will find it trivial and laugh at this feeble attempt to obtain security
through obscurity. At the very least, expect to see the upper management
and SysAdmin's pictures posted on a website or blog with derogatory
statements questioning their level of intelligence. I suggest you find a
better way to educate your client, because that is the *only* real
problem you have. I would simply refuse to support any system that
you're forced to run with a well known, highly exploitable vulnerability
exposed to the world. This is not your problem, it's theirs. Don't allow
them to make you responsible for it. Sounds like they want to be able to
buy their way out of having to be responsible. It's ssh or nothing. Take
your pick.
- --
Andrew Mathews
- ---------------------------------------------------------------------
~ 7:41pm up 16 days, 22 min, 11 users, load average: 1.02, 1.13, 1.10
- ---------------------------------------------------------------------
Life is a gamble at terrible odds, if it was a bet you wouldn't take it.
-- Tom Stoppard, "Rosencrantz and Guildenstern are Dead"
- --
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)
Comment: Using GnuPG with Netscape - http://enigmail.mozdev.org
iD8DBQE/j05QidHQ0m/kEssRAp77AJ9NNDZa3RitWdyx/jicnePtrMwtagCfUVei
UnSEsKyI6l5zY2wlOeit2cg=
=jpbv
-----END PGP SIGNATURE-----
_______________________________________________
Linux-users mailing list
[EMAIL PROTECTED]
Unsubscribe/Suspend/Etc -> http://smtp.linux-sxs.org/mailman/listinfo/linux-users
