Re: Questions on secure remote access to Fedora Core 2
- From: left_coast <void@xxxxxxxx>
- Date: Wed, 25 Oct 2006 22:40:02 -0700
C. J. Clegg wrote:
Anyway I am unclear on just what it is that makes ssh more secure than,
say, telnet.
Telnet sends passwords and data in clear text, so anyone that can see the
packets (using a sniffer) as they are transmitted over the network, can get
the password and the data. With ssh, both the password and the data are
encrypted, so neither can be read using a sniffer. If you do nothing else,
switching from telnet to ssh, ssh will secure your data and password as
they transverse an insecure net. That said, there is, as you say below,
other issues...
If I set up sshd and someone has an ssh client on their
computer, and they know a valid userID and password on my machine, then
they're in just as easily with ssh as with telnet, near as I can see.
Unless you use "keys" with passphrases.
http://www.securityfocus.com/infocus/1810
.
- Follow-Ups:
- Re: Questions on secure remote access to Fedora Core 2
- From: C. J. Clegg
- Re: Questions on secure remote access to Fedora Core 2
- References:
- Questions on secure remote access to Fedora Core 2
- From: C. J. Clegg
- Questions on secure remote access to Fedora Core 2
- Prev by Date: Questions on secure remote access to Fedora Core 2
- Next by Date: Re: Questions on secure remote access to Fedora Core 2
- Previous by thread: Questions on secure remote access to Fedora Core 2
- Next by thread: Re: Questions on secure remote access to Fedora Core 2
- Index(es):
Relevant Pages
|
