Subject: Re: ssh - are you nuts?!?
To: Mipam <>
From: Manuel Bouyer <>
List: tech-security
Date: 12/17/2000 19:06:54
On Sun, Dec 17, 2000 at 05:03:46PM +0100, Mipam wrote:
> > > Are there any more features that might make SSH valuable?
> > 
> > TCP tunnelling.
> Could be good point, however, in many cases you'll end up with tcp over tcp
> which isnt a good idea. To point out one issue with that look here:

No, because in case of ssh it's not the tcp packets which are carried by the
tunnel but users data.

> To come back on ssh, two other advantadges (forgive my worse English) are
> 1) RSA-based host authentication. 
> 2) Instead of giving in a username you can also use RSA based authentication
> with a passphrase. It's shortly explained in ssh(1) (man 1 ssh).
> In these days of the internet it's more like: RIP telnet :)
> But ..... using ipsec and telnet isnt that bad.

Yes, if the remote end supports ipsec.

Manuel Bouyer, LIP6, Universite Paris VI.