[39926] in North American Network Operators' Group
Re: 'we should all be uncomfortable with the extent to which luck..'
daemon@ATHENA.MIT.EDU (Marshall Eubanks)
Thu Jul 26 13:40:52 2001
From: "Marshall Eubanks" <tme@21rst-century.com>
Reply-To: tme@21rst-century.com
To: <z@s0be.net>, Marshall Eubanks <tme@21rst-century.com>,
Bill Fenner <fenner@research.att.com>, <booloo@cats.ucsc.edu>,
<nanog@nanog.org>
Date: Thu, 26 Jul 2001 14:06:32 -0400
Message-id: <3b605c28.3d65.0@idsonline.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
Errors-To: owner-nanog-outgoing@merit.edu
>
This is, in fact, what we do; it still makes me nervous.
Marshall
>
>
>On Wed, 25 Jul 2001, Marshall Eubanks wrote:
>
>>
>> >
>> >
>> >>> > How many of us here run anything less than SSH and even allow telnetd
>> to
>> >>> > live on any of our hosts?
>>
>> Hey, we have had to do without SSH in more than one CISCO IOS build in the
last
>> 6 months in 12.1 / 12.2.
>>
>> This always made me feel very nervous.
>>
>
>
>
> One way of avoiding this is to always have a console server that has
>SSH implemented into the IOS build ( or even a separate vendor that
>supports SSH ). This way you centrally access your network devices from
>one spot, authenticated by SSH, if any of the devices in question do not
>support SSH ( yes this can be impractical, but I typically want to have
>console access to every device I administer if possible anyway ).
>
>
>
>.z
>
Marshall Eubanks
tme@21rst-century.com
