Re: Secure FTPD (SSL)

• Previous message: Carlos Moreno: "Re: Reboot in output from "last":"
• In reply to: John Thompson: "Re: Secure FTPD (SSL)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Thu, 24 Oct 2002 17:18:28 -0700

John Thompson wrote:
> In article <G6xt9.3551$iV1.1683@nwrddc02.gnilink.net>, Nico Kadel-Garcia wrote:
>
>
>>FTP has never even been *possible* to secure against packet sniffing, which
>>is its great vulnerability to this day.
>
>
> If all you're concerned about is username/password sniffing, couldn't you
> use one-time passwords, eg as implemented by OPIE (http://www.inner.net/pub/opie)?
>

The message has long left the original topic, time for the
thread to die.

To recap:
This wasnt about "worrying about sniffing packets," but about a
comparison of the risks of using ssh/scp compared to telnet/ftp.

The 'leaks' in ssh were in the news, so the original poster
proposed that ftp was better because there was no new risk.

The follow up was comparing the two in terms of security.
There is no comparison, ftp has no security.
SSH offers pretty good security, throws compression in for free,
and at the very least protects passwords from casual
eavesdropping.

Yes, this gives short shrift to the other side.
Yes, OPIE is a great idea for single use auth tuples.
I dont want to restart the thread, I want to end it.
Feel free to disagree with me by email.
Just please let this thread die.

Thanks
Duane Smeckert
google for any of my email addresses.

• Next message: : "Re: Reboot in output from "last":"
• Previous message: Carlos Moreno: "Re: Reboot in output from "last":"
• In reply to: John Thompson: "Re: Secure FTPD (SSL)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]