On Tue, 12 Aug 2003 20:48:18 GMT, Bit Twister <BitTwisterlocalhost.localdomain> wrote:I have been using telnet to loginto a remote box for years without any>
> On 12 Aug 2003 12:56:01 -0700, john bailo wrote:>>> 0. Telnet is up and running on a rh9 machine.
> Working as designed.
>======= standard telnet inlude follows: =============
> Telnet and ftp are insecure, and are not loaded/enabled during normal installs.
> login id and password is passed as clear text and can
> be snatched with a packet sniffer off both ends of the connection.
> Use ssh/sftp instead.
> Be sure to get the lastest from your distribution vendor.
> If using, windoze get Putty.
> But if you realy want to use it:
> man xinetd
> Be sure to add the only_from = telnet_source_pc_ip_here
> to the /etc/xinetd.d/telnet file in the target pc.
> man hosts.allow
> man tcpd
> man 5 hosts_access
> Check the firewall
> and if all else fails, there is a very
> large Frequently Asked Question (FAQ) search engine found at
> key word(s) in the first box
> *linux* in the Newsgroup, pick English
I also have been running plain old ftp and ftpd for years with out any
You must be talking about RH, because both are enabled in Debian by default,
for the simple reason that they are excellent applications.
If you are a large organization or business, then worrying about "security"
is a good idea. But for us little guys, no need at all.
NOT directed to the estimable Bit Twister:
The yuppies at RH think everyone is out to get them, because THEY are out
to get everyone.