nanog mailing list archives

Re: telnet vs ssh on Core equipment , looking for reasons why ?

From: Bob K <melange () yip org>
Date: Tue, 31 Jul 2001 10:51:16 -0400 (EDT)


On Tue, 31 Jul 2001, Stephen J. Wilcox wrote:

But who said I am not on your network ?  What if I penetrated your AAA
server, or, some other server on your network ?


well your not. and if you were, i'm pretty well screwed! altho having said
that, my network doesnt allow you to hop between machines.. but maybe you
compromised my security? okay, i'm screwed again!


Security is generally not an all-or-nothing game.  Most script kiddies
have enough skill to run a prefab'd exploit on your IIS server; some have
enough skill to inject trojan ARP entries and use tcpdump; but far fewer
have the ability to decrypt ssh packets (although new tools are making
this easier).  In cases where ssh is an option, why not use it?

-- 
Bob <melange () yip org> | Yes.  I know.  That is, indeed, *not* mayonnaise.

Current thread:

Re: telnet vs ssh on Core equipment , looking for reasons why ?, (continued)
- - - Re: telnet vs ssh on Core equipment , looking for reasons why ? alex (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? fingers (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? alex (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Scott Francis (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? fingers (Jul 31)
    - RE: telnet vs ssh on Core equipment , looking for reasons why ? Deepak Jain (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Ariel Biener (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Stephen J. Wilcox (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Ariel Biener (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Stephen J. Wilcox (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Bob K (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? up (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Gary E. Miller (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Dan Hollis (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Ariel Biener (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Valdis . Kletnieks (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? mike harrison (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Bill Woodcock (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Randy Bush (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Alex Bligh (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Scott Francis (Jul 31)

(Thread continues...)