tech-net archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: telnetd: Authorization failed & Connection closed

On Mar 14,  2:27am, (Hubert Feyrer) wrote:
-- Subject: Re: telnetd: Authorization failed & Connection closed

| On Sat, 13 Mar 2010, Christos Zoulas wrote:
| >                  valid  Only allow connections when the remote user can pro-
| >                         vide valid authentication information to identify 
| >                         remote user.  The login(1) command will provide any
| >                         additional user verification needed if the remote
| >                         user is not allowed automatic access to the 
| >                         account.
| >
| > So vista and juniper don't implement SRA and the connection is not allowed.
| > The default NetBSD telnetd configuration is more secure since passwords are
| > not sent in plaintext over the network. This is why valid is the default.
| > If you want to send your passwords in plaintext, feel free to change it for
| > your system, but I don't think that the change is appropriate for everyone.
| And I can't have a steak because a three-year-old can't chew it?
| Seriously, it sounds pretty broken to rather not have a working telnet 
| than to do just what telnet is intended for.

You have to edit /etc/inetd.conf to enable telnetd; we disable it by default
because it is insecure. We provide an example line for a more secure
configuration if you really want to use it as a hint. You are free to change
it to whatever you like, but the default is a suggestion for a secure
configuration. You should bother the vendors instead to implement SRA.


Home | Main Index | Thread Index | Old Index