On Tue, May 14, 2002 at 11:26:45AM +0800, Ian C. Sison wrote: > Security and convenience have been at odds with each other since the world > started. Being totally paranoid about security is just as detrimental to > productivity as being totally lax about it. The secret is finding the > correct balance.
Right. Computer security should never be completely about prevention, but more about risk management. Telnet logins are in general a big big risk, especially over public networks. SSH serves to minimize the risk somewhat. Remember telnet logins are not only vulnerable to sniffing, but also man in the middle attacks. On a public network it's possible for someone down between you and your target to manipulate your connections so the machine you *think* is the server you're telnetting into is actually a rogue server that is sitting in between you and the real server, pretending to be the server to you and pretending to be you to the server. In the meantime, it's either recording all the passwords and commands you type in, or maliciously manipulating what you do. It's also possible to do this with SSH, but at least SSH provides a mechanism to avoid such attacks (hostkey checking). -- Rafael R. Sevilla <dido at imperium dot ph> +63(2)8123151 Software Developer, Imperium Technology Inc. +63(917)4458925 _ Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph To leave: send "unsubscribe" in the body to [EMAIL PROTECTED] To subscribe to the Linux Newbies' List: send "subscribe" in the body to [EMAIL PROTECTED]
