On 11/1/19 1:29 PM, Gabe Alford wrote:

On Fri, Nov 1, 2019 at 10:46 AM Trevor Vaughan <tvaug...@onyxpoint.com <mailto:tvaug...@onyxpoint.com>> wrote:

    I don't see a reason to remove the rule in general but:

    1) Having the telnet *client* present isn't really a big deal if
    you have pretty much any scripting language, or modern SSH that
    allows the NULL cipher

IIRC as of one of the OpenSSH 7.6 releases, a cipher of `none` is no longer allowed.

OK, netcat ('nc') then, or a two-line TCL/Perl/Python  script that opens a socket. Or just open it in the shell via the /dev/ filesystem network socket nodes:

exec 3<>/dev/tcp/mytelnetbox.example.com/23

Open-scap-list mailing list

Reply via email to