Comments on: krb5-telnet != telnet-server

By: Andryan

Andryan — Thu, 08 May 2008 00:46:40 +0000

Because these servers are connected to an internal network which is isolated and sniffing is impossible. Anyway, that was my task at work and there is no security concern.

Before you post your comment, this is my technical notes and I don’t need people telling me that telnet is insecure. The idea of this blog is to share knowledge that is probably not documented elsewhere. I know what I’m doing, people.

For those who need this information, they should know what they are doing and know the risks involved by using telnet.

By: jaoswald

jaoswald — Wed, 07 May 2008 22:29:36 +0000

Why, out of curiosity, do you feel the need to enable a doubly-insecure option?

Anyone who sniffs your root password (sent unencrypted by telnet) will then be able to own your system.

By: Kongo Kalle

Kongo Kalle — Wed, 07 May 2008 20:38:34 +0000

They have put notes in about it, its written pretty clearly:

TELNET IS DEAD, USE SSH!