[33266] in North American Network Operators' Group
Re: FTP with authentication to RADIUS
daemon@ATHENA.MIT.EDU (Adrian Chadd)
Sat Jan 6 00:05:02 2001
Date: Sat, 6 Jan 2001 13:00:03 +0800
From: Adrian Chadd <adrian@creative.net.au>
To: nanog@merit.edu
Message-ID: <20010106130001.C54803@ewok.creative.net.au>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <Pine.BSF.4.21.0101051748580.34509-100000@cx175057-a.ocnsd1.sdca.home.com>; from bri@sonicboom.org on Fri, Jan 05, 2001 at 05:50:52PM -0800
Errors-To: owner-nanog-outgoing@merit.edu
On Fri, Jan 05, 2001, Brian W. wrote:
>
> scp for windows is available, see
> http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html.
>
> putty is a win ssh client, its free but a little too simple for me.
> pscp is a windoze scp client which I like. Here's the faq,
> http://www.chiark.greenend.org.uk/~sgtatham/putty/faq.html.
>
.. which is leading us WAY off topic.
* telnet (along with FTP) is not insecure.n itself Perhaps the use or
implementations are insecure, but I'm pretty sure I've seen some
ssh-related security bugs.
* show me a way to break telnet, and I'm sure to find a way to break ssh
(yes, those who follow the news will go "but that relies on dumb users!"
but I *bet* anyone who runs a decent sized ISP will attest to their
users stupidity - or they wouldn't need a helpdesk...)
* Yes, the FTP protocol might be ancient, but so is TCP. And yes, TCP
has had some overhauls but the basic principle is there, just like
in FTP (which if I remember my history correctly was originally
designed to work over NCP..)
This thread is irrelevant to NANOG. If you want to learn more about it,
I suggest you start by buying a book like "Applied Cryptography" -
which explains concepts such as trust relationships as well as
"cryptography" (and can be used to prove telnet is secure/insecure in
situations just as much as ssh is secure/insecure in situations.)
*sigh*.
Adrian
--
Adrian Chadd "Here's five for the cake, and
<adrian@creative.net.au> five to buy a clue."
- Ryan, Whatever it Takes
