telnet vs ssh on Core equipment , looking for reasons why ?
Dave Israel
davei at biohazard.demon.digex.net
Tue Jul 31 16:37:29 UTC 2001
Sadly, there are two good reasons to use telnet to connect to core
equipment, even in this day and age:
1) You have legacy equipment that does not support ssh, and/or your
vendor does not include ssh in every release of code (specifically,
code you need to run.)
2) Your vendor's ssh authentication creates a secure connection, and
transfers the password securely, only to then send the password,
unencrypted, to an authentication server for verification, making
ssh moot.
-Dave
On 7/31/2001 at 11:54:38 -0400, Daniel Golding said:
>
> I believe that folks are having problems saying why they use SSH instead of
> telnet, because the best practice is simply so self-evident.
>
> SSH gives you a measure of protection against bad people sniffing out your
> passwords. Telnet does not. SSH is encrypted. Telnet is not. It's pretty
> easy - only use telnet if you must. Use SSH if you possible can. Of course,
> this also holds true for using scp instead of ftp, although scp isn't as
> widely supported, yet.
>
> - Daniel Golding
>
> > -----Original Message-----
> > From: owner-nanog at merit.edu [mailto:owner-nanog at merit.edu]On Behalf Of
> > Mr. James W. Laferriere
> > Sent: Tuesday, July 31, 2001 11:25 AM
> > To: nanog at merit.edu
> > Subject: Re: telnet vs ssh on Core equipment , looking for reasons why ?
> >
> >
> >
> >
> > Hello All , Thank you for the disertations & insight into the
> > possible methods of compromising an authentication attempt .
> >
> > But , I am really interested more in 'Why' each responsible
> > indidvual(s) chose either telnet or ssh to manager their Core
> > equipment .
> >
> > ssh
> > 1 ) Has been the encrypted authentication .
> >
> > telnet
> > 1 ) Has been legacy OS's / Equipment olny supporting telnet .
> >
> > On Tue, 31 Jul 2001, Mr. James W. Laferriere wrote:
> > > Hello All , I have charged myself with trying to find a statistic
> > > on how many individuals responsible for IP core equipment
> > > recommend telnet or ssh & why particularly . I will summarize .
> >
> > Tia , JimL
> >
> > +------------------------------------------------------------------+
> > | James W. Laferriere | System Techniques | Give me
> > VMS |
> > | Network Engineer | P.O. Box 854 | Give
> > me Linux |
> > | babydr at baby-dragons.com | Coudersport PA 16915 | only
> > on AXP |
> >
> > +------------------------------------------------------------------+
> >
>
>
--
Dave Israel
Senior Manager, IP Backbone
Intermedia Business Internet
More information about the NANOG
mailing list