From owner-freebsd-ports Mon Feb 26 20: 1: 7 2001 Delivered-To: freebsd-ports@freebsd.org Received: from btw.plaintalk.bellevue.wa.us (btw-xl1.plaintalk.bellevue.wa.us [206.129.5.130]) by hub.freebsd.org (Postfix) with ESMTP id AC1E137B401 for ; Mon, 26 Feb 2001 20:01:01 -0800 (PST) (envelope-from dennisg@software-munitions.com) Received: from localhost (dennisg@localhost) by btw.plaintalk.bellevue.wa.us (8.11.2/8.11.2) with ESMTP id f1R406L04630; Mon, 26 Feb 2001 20:00:06 -0800 (PST) Date: Mon, 26 Feb 2001 20:00:05 -0800 (PST) From: Dennis Glatting X-X-Sender: To: Ernst de Haan Cc: Steve Price , Subject: Re: Changing rsync to use SSH rather than RSH by default In-Reply-To: <20010227033214.A4431@c187104187.telekabel.chello.nl> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-ports@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, 27 Feb 2001, Ernst de Haan wrote: > > The POLA-purists would probably say something like make it > > configurable via an environment variable like RSYNC_RSH and > > have it default to /usr/bin/rsh if not overridden in the > > user's environment. Also many people are probably using > > rsync on internal networks and don't need the security more > > than they need the speed of transfers. > > For what it's worth: We use ssh even on the internal network, so that > if one box is compromised, they won't be able to sniff out any > passwords. > > Another $ 0.02, which makes $ 0.04 ! ;) > On two networks I dump over SSH. One network is a Frame and the other Ethernet. In each case the limiting factor isn't the crypto but the network and client systems. "Internal network" can mean anything. The Frame network, for example, though geographically dispersed is considered by the company to be an internal network. $0.06. > -- > Ernst > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-ports" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ports" in the body of the message