> -----Original Message-----
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
> Sent: Wednesday, August 23, 2000 12:19 PM
> To: '[EMAIL PROTECTED]'
> Subject: Re: [plug] telnet
>
>
>
> On Wed, 23 Aug 2000, Systems Administrator wrote:
>
> > he is in his local lan. i don't think anybody from his
> local lan would
> > pose as a security risk. but if you insist then go for it.
>
> I concerned about sending ASCII clear text when I telnet to the
> server. The passwd is NOT encrypted.
>
> I'm wondering how a hacker/cracker can sniff a passwd/username? Does
> he/she install it on my server or he/she runs a program from
> his server?
Do u r34lly w4nt to gr4b cl34rt3xt p4ssword r!ght b3for3 ur 3y3s? :-)
Th3n inst4ll ethereal http://ethereal.zing.org/
Good thing about this tool is that, even if u don't know the target's ip
subnet or network, Ethereal can grab packets. You will just have to study
reading packets. But ethereal made it easy for us. Meron nang HEX at ASCII.
:->
So, you might as well use ssh for loging in to your unix box. Pag ganito,
even if someone sniff packets on your wire, data will be somewhat useless.
--
.-------------------------------------------------------.
o^o | Ronneil Camara, | [EMAIL PROTECTED] |
/V\ |--------------------| +632 6354086 +63917 5326993 |
// \\ | "The only way to `----------------------------------|
/( )\ | stop a hacker is to think like one." |
^^-^^ | ...brilliant misguided youth |
`-------------------------------------------------------'
-
Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph
To leave: send "unsubscribe" in the body to [EMAIL PROTECTED]
