[249] in Release_7.7_team
Re: telnet -safe as default
daemon@ATHENA.MIT.EDU (jhawk@MIT.EDU)
Sat Jan 14 01:57:02 1995
From: jhawk@MIT.EDU
Date: Sat, 14 Jan 1995 01:56:52 -0500
To: cfields@MIT.EDU
Cc: release-team@MIT.EDU, brlewis@MIT.EDU
In-Reply-To: [247]
> Are there reasons that the "-safe" option should not be made the
> default behaviour in the release?
Indeed.
Per bug-chain [2501, 2503, 2506, 2592], telnet -safe ought to fail
when confronted with a telnetd that does not understand safe/kerberos
encrypted telnet (Bruce's patch from [2592] does not seem to have yet
been audited...). If telnet -safe (-ax) were the default, then telnet
to machines not supporting encrypted telnet, or machines that refused
such for some reason (wrong realm, etc.), would fail.
I would recommend that a new option be added, perhaps -A or somesuch
(to supplement -a), such that autoencryption would not cause telnet
to crash and burn. Perhaps that might make a more reasonable default
(-Ax rather than -ax).
--jhawk
