OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
From: Tzafrir Cohen (tzafrirtechnion.ac.il)
Date: Thu Jan 17 2002 - 16:02:54 CST

  • Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

    Fully agree with what you wrote. Even mindterm does not make ssh available
    for everyone, as not every station has ajava-enabled browser.

    On 18 Jan 2002, Bill Kenworthy wrote:

    > I have also never figured out
    > why all the evangelistic hooha over telnet when ftp and I think pop3 and
    > imap essentially do the same thing - though this is starting to change.
    >

    Imap is a bit less bad. I think that your password is not given in easy
    plain text on the beginning of the session. I think it is obfuscated a bit
    or something.

    You won't catch any of the anti-telnet guys using plain pop3 or
    (non-annonymous) ftp. To replace ftp you have scp and sftp. pop3 and imap
    can be carried over SSL. Imap can also use a chalange-response
    authenticcation.

    >
    > For those of you using pop3 or imap to collect your mail from a remote
    > server, fire up ethereal and have the delight of watching your password
    > go out in plain text every fewminutes or so, as well as personal email
    > coming back in plain ...

    Same goes for icq, and I suspect that for some other instant-messangers. 

    -- 
Tzafrir Cohen                        /"\
mailto:tzafrirtechnion.ac.il        \ /  ASCII Ribbon Campaign
Taub 229, 972-4-829-3942,             X   Against  HTML  Mail
http://www.technion.ac.il/~tzafrir   / \

    For help, email discuss-helpmandrakesecure.net; to unsubscribe send a
message to discuss-unsubscribemandrakesecure.net.  To visit MandrakeSecure,
go to http://www.mandrakesecure.net/.