It's 01 Dec 98 17:22:49,
discussion of telnet security
rm> The connection between your system and machine X will be unencrypted,
rm> and hence susceptible to snooping. The connection between X and Y will
rm> however be encrypted.
rm> Shortly put, this is not a secure connection, since it can be
rm> intercepted in the clear at any point between your machine and machine
rm> X, and hence the connection between X and Y can now be intercepted at
That depends. Technically, you are correct, in that the section of the
link using telnet is in the clear and can be sniffed. The question is
whether that clear link is over a private, trusted network, or an
untrusted (e.g. the Internet) network. If it's the former, the overall
communication should be secure enough for most needs (unless the
"secure" network has been compromised), otherwise it's definitely
telnet from Windows to a UNIX box in the same office, then ssh to a
remote site is likely OK, but telnet across the Internet, then ssh to
the secure network is definitely a risk.
However, since TeraTerm and its ssh extensions are freeware
applications, even Windows users do not need to run their terminal
sessions in the clear, if a SSH server is available at the other end.
Final note: Even while in ssh, beware of other services you open over
the Net. It's all too easy to feel cosy in your SSH session and then
lapse and start an insecure FTP session between the same two hosts,
because you need to move some files. :-)
.. It's not what, but how.
|Fidonet: Tony Langdon 3:635/728.18
| Standard disclaimer: The views of this user are strictly his own.