[rhn-users] Root login with telnet

Roy S. Nielsen rsn at lanl.gov
Fri Jun 30 18:52:39 UTC 2006 

Sorry about that, it's

www.sans.org/rr

not

isc.sans.org/rr

-Roy


> Hello,
>
> In these days of switched networks, it is possible that "switches" can be
> bumped into hub mode.. Some vendors are aware of this and have hardened
> thier switches against it.. some have not.
>
> Using telnet is asking for trouble.  Have you checked out isc.sans.org/rr
> or securitydocs.com?
>
> Might find some useful information there how to deal with the HPUX/ssh
> issues as well as why not to use telnet.
>
> -Roy
>
>
>>
>>> Let me get this straight.  You actually trust your users?  You are
>>> certain that they don't have the capability to install a sniffer?  Are
>>> [...]
>>
>> You are right, you cannot trust all of your users. But in the days of
>> switched networks, if you are in an office environment you cannot see
>> your
>> neigbhors network traffic, because the switch simply does not send it to
>> your switch port. Therefore it is a switch, not a hub. You only see
>> _your_
>> traffic and the broadcasts. And in these there is no passwords. So the
>> only
>> people who maybe sniff your password is the network stuff who has access
>> to
>> the switch itself or to the patch panels.
>>
>> More risky is your PC itself. Maybe you have installed a trojan
>> keylogger
>> or
>> so, that would be bad, but that would be also bad if you use ssh.
>>
>> So, I am the same opinion that these root login over telnet in an office
>> environment is paranoia. If you telnet over internet to you server that
>> is
>> another story.
>>
>> Am I right? If not please tell me why.
>>
>> BTW. if you have to use HPUX servers you only can connect via telnet
>> because
>> the ssh implementation of HPUX is extremly slow, a few minutes (!) until
>> the
>> ssh connection is established. :-(
>>
>> Bye
>> Thorsten
>>
>> _______________________________________________
>> rhn-users mailing list
>> rhn-users at redhat.com
>> https://www.redhat.com/mailman/listinfo/rhn-users
>>
>
> _______________________________________________
> rhn-users mailing list
> rhn-users at redhat.com
> https://www.redhat.com/mailman/listinfo/rhn-users
>

More information about the rhn-users mailing list