Re: National security backdoor.
From: Nick Maclaren (nmm1_at_cus.cam.ac.uk)
Date: 6 Apr 2004 15:29:55 GMT
In article <firstname.lastname@example.org>,
|> In article <email@example.com>, "Jon A. Solworth" <solworth@RemoveThisNow.cs.uic.edu> writes:
|> >Not to mention (well, I'm going to mention it), nobody uses telnet
|> Maybe in 5 to 10 years time that statement will be true.
|> But at the moment the number of machines running Telnet and ftp (both of which
|> send passwords in clear text) far exceeds the number running ssh and sftp.
|> What you probably meant was that nobody should be using Telnet if they can
|> avoid it. The problem being that you only control your own machines not all the
|> machines you may need to access or transfer files to outside of your
It's not the only problem. Quite a lot of control devices, even
on new systems, have only a telnet interface. There is also the
requirement for FTP and TFTP (worse than FTP!) for booting and font
serving on some systems.
Such interfaces should obviously be as well isolated as possible,
and with no untrusted machines on the same network. Easier said
than done :-(