North American Network Operators Group|
Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical
Re: IT security people sleep well
On Thu, 3 Jun 2004, Eric Kuhnke wrote:
What's really scary is that the people here complaining about a certain vendor charging extra for SSH and hence forcing them to use "insecure" telnet havnt the cop-on to read that vendor's "AAA" documentation and realise that the base feature set _already_ includes capability to do secure authentication.The part about Telnet is truly scary...
Eg, challenge/response via RADIUS or even Kerberised telnet (and many people here probably already have kerberos servers in their organisations, aka Windows Active Directory).
Paul Jakma firstname.lastname@example.org email@example.com Key ID: 64A2FF6A
warning: do not ever send email to firstname.lastname@example.org
You can't take damsel here now.