Carsten Bormann wrote:
One difference between TELNET and other protocols here is that TELNET never was extended to provide better security (*). *THAT* is what makes TELNET obsolete for its main use case, remote login.
Better security? Wrong. As I already pointed out, TELNET may be used with remote login applications with one time password. Worse, SSH is no better than TELNET because SSH based on PKI is not cryptographically secure at all as was demonstrated by Diginotar: https://en.wikipedia.org/wiki/DigiNotar Though PKI blindly trust untrustworthy third party CAs as if they were trusted third parties, compromising a third party CA is as easy as compromising a third party ISP. Just as plain text passwords are safe unless some intermediate ISP is compromised, PKI based systems are safe only when no intermediate CAs are not compromised. Masataka Ohta
