Re: TELNET to HISTORIC Re: FTP

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Carsten Bormann wrote:

One difference between TELNET and other protocols here is that
TELNET never was extended to provide better security (*).    *THAT*
is what makes TELNET obsolete for its main use case, remote login.
Better security? Wrong.

As I already pointed out, TELNET may be used with remote login
applications with one time password.

Worse, SSH is no better than TELNET because SSH based on PKI is not
cryptographically secure at all as was demonstrated by Diginotar:

   https://en.wikipedia.org/wiki/DigiNotar

Though PKI blindly trust untrustworthy third party CAs as if they
were trusted third parties, compromising a third party CA is as
easy as compromising a third party ISP.

Just as plain text passwords are safe unless some intermediate
ISP is compromised, PKI based systems are safe only when no
intermediate CAs are not compromised.

						Masataka Ohta




[Index of Archives]     [IETF Annoucements]     [IETF]     [IP Storage]     [Yosemite News]     [Linux SCTP]     [Linux Newbies]     [Mhonarc]     [Fedora Users]

  Powered by Linux