[3085] in Kerberos
A doubt on telnet...
daemon@ATHENA.MIT.EDU (Aldrich)
Fri Apr 8 06:41:57 1994
From: aldo@elxsi.ernet.in (Aldrich)
To: kerberos@MIT.EDU
Date: Fri, 8 Apr 1994 12:23:47 -0800 (IST)
I have doubt regarding the telnet application. Say I did a
"telnet -l <remote user>" and that remote user hasn't given me permission
to use his account( He didn't enter my name in his .k5login file).
So the telnetd asks for a password. Is this password sent over the network
in encrypted form (using the session key) or is it sent over in clear. If
it is sent in clear is this not a potential problem (some one snooping
on the network may find out the password) ?
Thanks,
Aldrich Almeida
aldo@elxsi.ernet.in
