At 2:52 -0800 11/6/98, Dave Huang wrote:
>On Fri, 6 Nov 1998, Erik E. Fair wrote:
>> boom, you are done. Your system is no more secure or insecure than it was
>> before.
>
>Isn't it possibly slightly less secure to run telnet on a port >= 1024? If
>inetd dies for some reason, a user could setup their on telnetd on that
>port and grab passwords or whatever. Of course, inetd shouldn't be dying,
>but it's happened to me before (recently, in fact... egcs codegen bug,
>perhaps?)

True, however, it could be argued that if you already have a hostile with
an account on your system that you're in much deeper trouble than this
scenario would suggest.

	Erik <fair@clock.org>