Date: Sun, 11 Mar 2007 11:28:38 +0000 From: Howard Jones <howie@thingy.com> To: Wojciech Puchar <wojtek@tensor.gdynia.pl> Cc: freebsd-questions@freebsd.org Subject: Re: [freebsd-questions] [freebsd-questions] root login with telnetd Message-ID: <45F3E7E6.6060908@thingy.com> In-Reply-To: <20070311120541.Y90539@chylonia.3miasto.net> References: <20070310224946.K10353@chylonia.3miasto.net> <20070311081618.F66000@chylonia.3miasto.net> <45F3DF87.1090503@thingy.com> <20070311120541.Y90539@chylonia.3miasto.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Wojciech Puchar wrote: > so generalizing that "telnet and rsh is bad" is as stupid as telling > that oxygen is bad as it makes fires. Well, that's true, but if you have the choice, there are better choices. You *can* hammer in nails with the butt of a gun, but there's a chance you'll somehow shoot yourself in the arm. A hammer doesn't have that risk. There have been *many* problems over the years with rsh and telnet. rsh's security model comes from a time when people thought computers would never lie to each other. SSH does allow you to give only enough access, with the side-benefits (in your case) of compression and encryption. Even if you used ssh without those, the key-based authentication is still safer, and the code more modern and securely designed.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?45F3E7E6.6060908>