Full Disclosure mailing list archives

Re: Re: Re: open telnet port

From: Dries Robberechts <dries () skybel net>
Date: Thu, 09 Sep 2004 15:04:31 +0200

I disagree, when running telnetd, people will use it and hence create asecurity flaw. Moreover, you would use it yourself with the veryintention of becoming root and starting a secure daemon, which in myopinion can do lot more harm than good.

Even on a (virtual) private network I would try to avoid it wheneverpossible, but using it on a public network as a backup I wouldn't evenconsider.



Dries.

A reasonable use for telnet is when the ssh deamon goes down, or isn'tstarted on bootup because of some configuration error...
Yes, I know it isn't secure, but sometimes it can be the last resort...



_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Re: Re: Re: open telnet port, (continued)
- - - Re: Re: Re: open telnet port Barry Fitzgerald (Sep 09)
    - Re: Re: Re: open telnet port Raj Mathur (Sep 09)
    - Re: Re: Re: open telnet port Barry Fitzgerald (Sep 10)
    - Re: Re: open telnet port A.J. (Sep 09)
- Re: open telnet port harry (Sep 07)
- Re: open telnet port cel0x (Sep 07)
- Re: open telnet port A.J. (Sep 07)
- Re: open telnet port David Huecking (Sep 07)
- Re: open telnet port Kenneth Ng (Sep 07)
- Re: open telnet port Riccardo Pizzi (Sep 07)
- Re: Re: Re: open telnet port Dries Robberechts (Sep 09)
- RE: Re: Re: open telnet port Todd Towles (Sep 09)
- RE: Re: open telnet port Yaakov Yehudi (Sep 09)
- RE: Re: Re: open telnet port Todd Towles (Sep 09)
- RE: Re: Re: open telnet port Robert Moss (Sep 10)