Subject: Re: ssh - are you nuts?!?
To: None <>
From: Dan Riley <>
List: tech-security
Date: 12/21/2000 15:27:45
Mipam <> writes:
> Moreover ... security isnt an after thought, it must be build in with
> the very design. That's another reason why i dont use stelnet.

While it is tempting to believe ssh must be better than secure telnet
because ssh was designed with security in mind, this is a really *bad*
argument in a security context--there have been plenty of protocols
supposedly designed with security in mind that actually sucked badly,
while telnet is generally well designed and very flexible.  You have
to judge the protocols on their actual merits (which in the case of
secure telnet means reading rfcs 2941 - 2953, especially rfc2941 and
rfc2946), rather than the perceived merits of their parentage.
Dan Riley                               
Wilson Lab, Cornell University      <URL:>
    "History teaches us that days like this are best spent in bed"