>Number:         9521
>Category:       security
>Synopsis:       The kerberized cryto-intl telnet is too noisy
>Confidential:   no
>Severity:       non-critical
>Priority:       high
>Responsible:    security-officer (NetBSD Security Officer)
>State:          open
>Class:          change-request
>Submitter-Id:   net
>Arrival-Date:   Wed Mar  1 14:24:01 2000
>Last-Modified:
>Originator:     Bernd Ernesti
>Organization:
	
>Release:        NetBSD-current 28-Feb-2000
>Environment:
	
System: NetBSD arresum.inka.de 1.4S NetBSD 1.4S (ARRESUM) #407: Sun Feb 13 18:44:30 MET 2000 bernd@arresum.inka.de:/home/work/obj_i386/src.i386/sys/arch/i386/compile/ARRESUM i386


>Description:
	The kerberos support in telnet produces too much confusing output.

	And there seems to be no way to build a non kerberos telnet when
	you use the crypt-intl code to get raccon and co.
	bsd.own.mk contains defines for KERBEROS and KERBEROS5, but I can't
	find any checks in the crypt-intl tree which use that.
>How-To-Repeat:
	Build a crypto-intl version of telnet and use it:
 telnet localhost
Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.
[ Trying mutual KERBEROS5 ... ]
Kerberos V5: mk_req failed (No such file or directory)
[ Trying KERBEROS5 ... ]
Kerberos V5: mk_req failed (No such file or directory)

*** Connection not encrypted! Communication may be eavesdropped. ***
User not authenticated. Using plaintext username and password
Password:

>Fix:
	Don't print the kerberos lines if kerberos is not configured.
>Audit-Trail:
>Unformatted: