[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Future of kerberised telnet, login, rsh, ftp?

To: heimdal-discuss@sics.se
Subject: Re: Future of kerberised telnet, login, rsh, ftp?
From: Brian May <bam@snoopy.apana.org.au>
Date: Sat, 09 Jul 2005 19:10:29 +1000
In-Reply-To: <42CD4A33.9050208@highlandsun.com> (Howard Chu's message of "Thu, 07 Jul 2005 08:28:51 -0700")
Mail-Followup-To: heimdal-discuss@sics.se
References: <200507071420.j67EJwCA020104@ginger.cmf.nrl.navy.mil><42CD4A33.9050208@highlandsun.com>
Sender: owner-heimdal-discuss@sics.se
User-Agent: T-gnus/6.17.2 (based on No Gnus v0.2) SEMI/1.14.6 (Maruoka) FLIM/1.14.6 (Marutamachi) APEL/10.6 Emacs/21.4 (i386-pc-linux-gnu) MULE/5.0 (SAKAKI)

>>>>> "Howard" == Howard Chu <hyc@highlandsun.com> writes:

    Howard> Good point, I run into this pretty often. (My brother
    Howard> complains about it all the time, working with many
    Howard> terabytes of science/image data.) But the fix is easy,
    Howard> just add a "null" cipher spec and select it with "ssh
    Howard> -c". Probably smarter in some cases is to add a
    Howard> checksum-only cipher so that you can still protect against
    Howard> hijacking.

Probably should use public key authentication too, so passwords are
transmitted in the clear.
-- 
Brian May <bam@snoopy.apana.org.au>

References:
- Re: Future of kerberised telnet, login, rsh, ftp?
  - From: Ken Hornstein <kenh@cmf.nrl.navy.mil>
- Re: Future of kerberised telnet, login, rsh, ftp?
  - From: Howard Chu <hyc@highlandsun.com>

Prev by Date: Re: Future of kerberised telnet, login, rsh, ftp?
Next by Date: Re: Future of kerberised telnet, login, rsh, ftp?
Prev by thread: Re: Future of kerberised telnet, login, rsh, ftp?
Next by thread: Re: Future of kerberised telnet, login, rsh, ftp?
Index(es):
- Date
- Thread