RE: Cisco Telnet Service

[Richard Robins <richard.robins () draxpower com>]

I agree with what you are saying but that would require span to pass traffic from one port to another to be sniffed.

To enable span you need access to the switch cli or browser - swings and roundabouts.

Nail the access down with ACL's 


-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of Matthew Caron
Sent: 26 January 2011 16:52
To: security-basics () securityfocus com
Subject: Re: Cisco Telnet Service

On 01/25/2011 12:57 PM, Richard Robins wrote:
> If these are all on the internal network is their a need to use SSH ???????

Why wouldn't you? It's not like it's hard to type "ssh <ip>" vs "telnet <ip>", and the extra security is easily worth 
it. I mean, come on - you can compromise telnet with Wireshark + some way to see the traffic (the latter being the 
harder part these days..).
--
Matthew Caron
Build Engineer
Sixnet | www.sixnet.com
O +1 518 877 5173 Ext. 138
F +1 518 602 9209
matt.caron () sixnet com

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and 
who needs an SSL certificate.  We look at how SSL works, how it benefits your company and how your customers can tell 
if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your 
Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing 
management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------


______________________________________________________________________
This email has been scanned by the MessageLabs Email Security System.
For more information please visit http://www.messagelabs.com/email 
______________________________________________________________________

- 
-----------------------------------------------------------------------------------------------------------------------------------------------------------
Drax Power Limited
Registered in England and Wales, Number 4883589. 
Registered  Office: Drax Power Station, Selby, North Yorkshire YO8 8PH

CONFIDENTIALITY NOTICE

The contents of this email, and any files transmitted with it, are confidential to the ordinary user of the email 
address to which it was addressed and may also be privileged. 
If you are not the addressee of this email you may not copy, forward, disclose or otherwise use it or any part of it in 
any form whatsoever. 

If you are not the intended recipient, or have received this email in error please email the sender immediately by 
replying to this message, and delete the material from any computer.

This message and its contents are attributed to the sender and may not necessarily reflect the view of Drax Power 
Limited, its parent, subsidiaries or associates. 
s 
----------------------------------------------------------------------------------------------------------------------------------------------------------

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------