[71033] in North American Network Operators' Group
Re: IT security people sleep well
daemon@ATHENA.MIT.EDU (Henning Brauer)
Sun Jun 6 06:17:09 2004
Date: Sun, 6 Jun 2004 12:15:13 +0200
From: Henning Brauer <hb-nanog@bsws.de>
To: nanog@merit.edu
Mail-Followup-To: nanog@merit.edu
In-Reply-To: <Pine.LNX.4.60.0406060549500.5088@fogarty.jakma.org>
Errors-To: owner-nanog-outgoing@merit.edu
* Paul Jakma <paul@clubi.ie> [2004-06-06 09:03]:
> On Sat, 5 Jun 2004, Mike Lewinski wrote:
> >And that provides protection against MITM attacks how?
> kerberised telnet can be encrypted (typically DES - sufficient to
> guard MITM).
this is not nearly the same league as (proper) ssh.
complaining that cisco charges extra for such a critical component is
exactly the right thing to do; it is fucking scary.
every damn network device which used to have telnet should ship with
ssh, it's free. well, I understand that cisco has problems with their 3$
CPUs with the crypto load, bit that's an extremely poor excuse.
