On Sun, 24 Jun 2001, Tonton Rabena wrote:
>
> I guess not.. you can have your telnet secured as ssh do ... adding ssl
> support on it.
>
It's only a matter of taste whether you want telnet secured by SSL or SSH.
>
> > > I dont think you can use SSH only at all times, for instance you can't
> use
> > > ssh on a router.
> >
> > Some newer model Ciscos have SSH support built in, by the way, so this is
> > not absolutely true. And that's the reason for having host PC's on serial
> > ports that do speak SSH.
>
> This would be applicable if you are using cisco routers.. how about other
> kinds of routers?
>
I would guess that other router types also have other means of allowing
you to connect other than Telnet, of course. Any sane router manufacturer
would provide some other method of connecting and setting it up other than
on a live IP network.
But if you're willing to risk the possibility of your routers getting
compromised due to a packet sniff or MITM, that's up to you. It's your
network. At least doing a proxy SSH will serve to minimize that risk, and
I think no network administrator concerned about the health of his or her
network will go out of their way to increase their network's vulnerability
just for the sake of convenience.
--
Rafael R. Sevilla <[EMAIL PROTECTED]> +63(2) 8177746 ext. 8311
Programmer, InterdotNet Philippines +63(917) 4458925
http://dido.engr.internet.org.ph/
-----BEGIN GEEK CODE BLOCK-----
Version: 3.12
GAT d- s:- a- C++++ UL+++ P+++ L+++ E++ W++ N+ o K- w---
O- M-- V- PS+ PE Y+ PGP++ t+ 5 X+ R tv+ b+++ DI++ D+
G e++ h! r++ y+
------END GEEK CODE BLOCK------
_
Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph
To leave: send "unsubscribe" in the body to [EMAIL PROTECTED]
To subscribe to the Linux Newbies' List: send "subscribe" in the body to
[EMAIL PROTECTED]
