[1851] in linux-security and linux-alert archive

home help back first fref pref prev next nref lref last post

[linux-security] Re: Services not required?

daemon@ATHENA.MIT.EDU (Bernhard Weisshuhn)
Wed Jun 10 17:44:42 1998

Date: Tue, 9 Jun 1998 19:03:24 +0200
From: Bernhard Weisshuhn <bkw@weisshuhn.de>
To: linux-security@redhat.com
In-Reply-To: <Pine.LNX.3.96.980609163618.29945J-100000@alpha.ilm.net>; from Andrew Frolov on Tue, Jun 09, 1998 at 04:43:35PM +0400
Resent-From: linux-security@redhat.com
Resent-Reply-To: linux-security@redhat.com

Andrew Frolov (dron@ilm.net) wrote:

> JUST CLOSE TELNET SERVICE!
> Force your users to use ssh - there are already 2 clients for windows, 
> aik: SecureCRT and SSH for Windows.

I wish there would be.

AFAIK SecureCRT is in semi-public beta (download for U.S. citizens
only), and the free ssh for windows client is a proof of concept
implementation at best. Slow and painfull.

There definitely is a strong need for a free and powerfull ssh-Client for
Windows (and probably MacOS), just as we need a nice looking GUI-client
doing something like ftp, only with encryption (for passwords at least).
Not for us Real Men[tm], but for the lusers that force us to keep
those sniffable services running. Or would you like to tell your
customers to install a real OS only to be able to update their webpages?

Might be a nice opportunity for a startup software company to get into
the heads of gazillions of Internet-Users, did I hear somebody say
'Telnetscape' ? ;)


> > > > 110/POP3      (Katie Steven's v1.016)
> > 
> > I don't know if that version is secure, but it's a sniffable service.

Are there any ssl-based replacements for pop/imap in the works? Or any
other cryptographical correct approach?

regards,
Bernhard

-- 
----------------------------------------------------------------------
Please refer to the information about this list as well as general
information about Linux security at http://www.aoy.com/Linux/Security.
----------------------------------------------------------------------

To unsubscribe:
  mail -s unsubscribe linux-security-request@redhat.com < /dev/null


home help back first fref pref prev next nref lref last post