ssh/telnet fedora 4

vlok stone vlokstone at yahoo.com
Thu Sep 1 10:42:29 EDT 2005 

This looks REALLY interesting 
http://www.linuxjournal.com/article/8477
This would be a good one to get going when we start
meeting again



--- John Seth <johnseth at phoenixwing.com> wrote:

> Where I worked, they are an all Cisco shop and our
> network admin's
> disabled telnet immediately upon configuring the
> equipment keeping  only
> SSH enabled.
> 
> I don't know of a good Cisco shop that has telnet
> still enabled, but then
> again, my knowledge of all Cisco shops is kind of
> limited to only a few ;)
> 
>  - Tony
> 
> -- 
> To each their own...
> 
> > That makes sense. Sniffing telnet is too easy. I
> > tested it using Ethereal and getting txt password
> is
> > so easy.
> >  I noticed though when Cisco, Alkatel etc.. techs
> are
> > loggin into routers and stuff they are always
> using
> > telnet. Would it not make more sense for a company
> > like Cisco that their systems meet these strict
> Dept
> > of Defense standards thats what they said in a
> Cisco
> > class I took not use something that easy to hack?
> Why
> > dosent Cisco push some of these guys use SSh or
> > something. Or get rid of telnet altogether.
> >
> > --- Richard Hubbard <rhubby at yahoo.com> wrote:
> >
> >>
> >> telnet is NOT installed by default on Fedora 4,
> >> (it's
> >> on the cd, so it's an easier install than
> >> downloading).  Even after the install, the
> xinet.d
> >> script disables telnet by default.
> >>
> >> the rationality is that telnet is horribly
> insecure
> >> (all info is sent in plain text, etherreal can
> pull
> >> out the password in an instant.  capture the
> >> traffic,
> >> find one of the machines involved, then i think
> the
> >> menu item is 'follow tcp conversation' or
> something
> >> similar, and out comes loginname and passwordD).
> >>
> >> ssh is there by default, you may want to use that
> >> instead.
> >>
> >> --- "David W. Aquilina" <david at starkindler.us>
> >> wrote:
> >>
> >> >
> >> > SSH should be installed and enabled by default,
> >> > IIRC.
> >> >
> >> > xinetd should have been pulled in by
> >> telnet-server,
> >> > assuming you were using yum/up2date to install
> it.
> >>
> >> >
> >> > --
> >> > David W. Aquilina
> >> > david at starkindler.us
> >> >
> >>
> >>
> >>
> __________________________________________________
> >> Do You Yahoo!?
> >> Tired of spam?  Yahoo! Mail has the best spam
> >> protection around
> >> http://mail.yahoo.com
> >>
> >
> >
> > __________________________________________________
> > Do You Yahoo!?
> > Tired of spam?  Yahoo! Mail has the best spam
> protection around
> > http://mail.yahoo.com
> >
> 
> 


Free Good
Fire Bad

__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com

More information about the nflug mailing list