Re: telnet vs ssl
On Mon, Jul 17, 2000 at 02:09:03PM -0400, Ethan Pierce wrote Hi, im wondering about the security of telnet - people say its really unsecure...does this mean that someone would need to be running a network sniffer on my ip to catch the data? I telnet to my ISP from work, (only telnet available) then run SSH from ISP shell to home machineis this just as insecure as a straight connection via telnet right to my home machine? Maybe, it depends how your data gets from work to your ISP. If you're dialling up your ISP from work it's not so bad, because only machines on your ISP's net can see the traffic from your telnet session; if you're telnetting from your corporate LAN across the Internet to your ISP then it's no better than using Telnet alone. You don't need an SSH server to use SSH from your workplace: there are at least a couple of free Windows terminal programs (teraterm pro and putty) that can use SSH, and you could probably run them off a floppy. Of course, your workplace may be paranoid about you using or installing unauthorised software, in which case you should try to persuade them to authorise one of these (if they are across the security issues it shouldn't be a problem, provided they don't mind you using your home machine on work time). HTH, John P. -- [EMAIL PROTECTED] [EMAIL PROTECTED] http://www.mdt.net.au/~john Debian Linux admin support:technical services
telnet vs ssl
Hi, im wondering about the security of telnet - people say its really unsecure...does this mean that someone would need to be running a network sniffer on my ip to catch the data? I telnet to my ISP from work, (only telnet available) then run SSH from ISP shell to home machineis this just as insecure as a straight connection via telnet right to my home machine? Thanks -Ethan
Re: telnet vs ssl
Ethan Pierce wrote: Hi, im wondering about the security of telnet - people say its really unsecure...does this mean that someone would need to be running a network sniffer on my ip to catch the data? Yup. And there's plenty of different apps out there to do just that. I telnet to my ISP from work, (only telnet available) then run SSH from ISP shell to home machineis this just as insecure as a straight connection via telnet right to my home machine? Sure is. The data path from you to your ISP is completely unprotected. When you say only telnet available I take that means that SSH is not available at the computer you have access to at work? If so, then perhaps you should look into finding an SSH client tat you can out onto the computer at work if at all possible. -- Mike Werner KA8YSD | Where do you want to go today? | As far from Redmond as possible! '91 GS500E| Morgantown WV | Only dead fish go with the flow.
Re: telnet vs ssl
A long time ago, in a galaxy far, far way, someone said... Hi, im wondering about the security of telnet - people say its really unsecure...does this mean that someone would need to be running a network sniffer on my ip to catch the data? Yep. Telnet was written back when worrying about people sniffing connections was a non-issue. I telnet to my ISP from work, (only telnet available) then run SSH from ISP shell to home machineis this just as insecure as a straight connection via telnet right to my home machine? Yep: just as insecure - you don't know who between you and your ISP may be running a packet sniffer. Your only solution (that I know of) is to get your sysadmin at work to unlock port 22 (the port used by ssh) at the firewall (if it's a firewall that's blocking ssh). -- -- Phil Brutsche [EMAIL PROTECTED] There are two things that are infinite; Human stupidity and the universe. And I'm not sure about the universe. - Albert Einstien