From owner-freebsd-questions@FreeBSD.ORG Thu May 28 11:10:25 2009 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 4A81C106566C for ; Thu, 28 May 2009 11:10:25 +0000 (UTC) (envelope-from wojtek@wojtek.tensor.gdynia.pl) Received: from wojtek.tensor.gdynia.pl (wojtek.tensor.gdynia.pl [IPv6:2001:4070:101:2::1]) by mx1.freebsd.org (Postfix) with ESMTP id 3C7718FC23 for ; Thu, 28 May 2009 11:10:23 +0000 (UTC) (envelope-from wojtek@wojtek.tensor.gdynia.pl) Received: from wojtek.tensor.gdynia.pl (localhost [IPv6:::1]) by wojtek.tensor.gdynia.pl (8.14.3/8.14.3) with ESMTP id n4SBABoe059438; Thu, 28 May 2009 13:10:11 +0200 (CEST) (envelope-from wojtek@wojtek.tensor.gdynia.pl) Received: from localhost (wojtek@localhost) by wojtek.tensor.gdynia.pl (8.14.3/8.14.3/Submit) with ESMTP id n4SBAB1a059435; Thu, 28 May 2009 13:10:11 +0200 (CEST) (envelope-from wojtek@wojtek.tensor.gdynia.pl) Date: Thu, 28 May 2009 13:10:11 +0200 (CEST) From: Wojciech Puchar To: Olivier Nicole In-Reply-To: <200905281053.n4SArD5G046750@banyan.cs.ait.ac.th> Message-ID: References: <200905281030.n4SAUXdA046386@banyan.cs.ait.ac.th> <200905281041.n4SAfTHw046546@banyan.cs.ait.ac.th> <200905281053.n4SArD5G046750@banyan.cs.ait.ac.th> User-Agent: Alpine 2.00 (BSF 1167 2008-08-23) MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Cc: freebsd-questions@freebsd.org Subject: Re: Remotely edit user disk quota X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 28 May 2009 11:10:25 -0000 >> sure, but most probably it's perfectly secure. > > Because rsh/rlogin etc. is unsecure in any case. I don't remember the very bad you don't remember the details. Let i give you an example. I throw 1000$ on my table in my flat. Is this money insecure? The answer is - maybe, it's just as secure as my doors and windows cause you have to enter my flat first to get it. Other case - i put this 1000$ into hardened steel coffer. Is it secure? The answer is - The coffer provides EXTRA security over just throwing it on table. The question - do i need an extra cost of coffer? the answer depends again of how good my doors and windows are! Same with rsh. If your servers are connected by LAN and there are only your servers there, there are not possible to: 1) sniff your traffic as potential sniffer isn't in LAN 2) cheat from outside your inside's IP. So you simply don't need a coffer. As coffer is an extra cost, ssh is an extra cost. Actually great cost of unneeded encryption and RSA/DSA negotiation on startup. The other case: i have secure tunnels between some of my servers and my home computer. I do use rsh/rlogin for everything as the communication is already secured! The difference between human and monkeys is that human can think himself instead of just learning and blindly repeating.