On Fri, 10 May 2002, dek wrote: > some people on this list said > > >telnet is evil., telnet does not do encryption, telnet is a remnant of the > past > and some other silly things > > telnet _perse_ is _not_ evil, it's a _good_ _useful_ tool thats why every > OS that i know of has it > why? because it's a good tool ( go ssh on port 110 to see check if pop3 is > working , bah it would be great if you could go ssh FQDN 25 and do helo > dude ) > > BUT ofcourse _you_ people already _know_ that > > runing a telnet server (telnetd) is another thing and is dangerous, i know > you people are pertaining to this , ofcourse sshd _is_ and in most or even > in every aspect _better_ ( but don't let that fool you, and make you so > comfortable and give you a false sense of security, sshd has its own share > of _exploits_ too ) > > from http://teso.scene.at/sshd_statement.php > > TESO Security, and many other research groups started researching this > vulnerability back in February, and to the best knowledge of TESO there are > more than six different exploits for this vulnerability, which are not > disclosed. > > so the moral of this boring email > > "right tool for the right job" >
Also i'd like to repeat that the _ONLY_ secure server is one that follows the following criteria _to the letter_ 1. unplugged from the network 2. unplugged from AC power source 3. unplugged from UPS power source 4. disasembled into basic components 5. locked in a safe, with unknown combination 6. buried six feet underground inside a top security installation, guarded 24x7 by guards who don't know why they are there in the first place. Security and convenience have been at odds with each other since the world started. Being totally paranoid about security is just as detrimental to productivity as being totally lax about it. The secret is finding the correct balance. _ Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph To leave: send "unsubscribe" in the body to [EMAIL PROTECTED] To subscribe to the Linux Newbies' List: send "subscribe" in the body to [EMAIL PROTECTED]
