-----BEGIN PGP SIGNED MESSAGE-----
On Fri, 8 Nov 1996, Chai Harjo wrote:
> > > Hello!
> > >
> > > I tried tcpdump on FreeBSD and it turned out that login information
> > > during telnet sessions as well as USER and PASS info sent by pop-client
> > > are both xmitted in plain text <shudder>.
> > > Is there any solution besides S/Key (please, include pointers) to
> > > block this don't-know-how-to-call-it hole.
> >
> > Have a look at SSLeay and SSLtelnet. SSL is an excellent freeware
> > implementation of Netscape's SSL (Secure Socket Layer) encryption
> > standard. SSL telnet is a patched version of telnet and telnetd which can
> > use SSL.
[snip]
> Does Linux do the same thing too?
I run SSL on my home machine (Linux 2.0.23) and the machines I administer
(IRIX 5.3). I haven't tried the SSL telnet for Win yet.
Make sure you use the latest version of SSL-MZtelnet if you run IRIX, the
previous versions didn't work too good. Apart from that it works like a
charm.
Dreaming about an SSL POP server... ;)
Regards,
Damien
| Damien Miller -
| Email: dmiller @
vitnet .
com .
sg (PGP and MIME ok)
| WWW: http://www.vitnet.com.sg/dmiller
| PGP public key: send me an email with "send file pgp_key" as the subject
-----BEGIN PGP SIGNATURE-----
Version: 2.6.3i
Charset: noconv
iQEVAwUBMoaeR7rHgZ2SMrItAQG3Rgf+Pk0sw7GfNi2UoGnb/GygdREJErPE0dRi
wBDD4W1nn6SPxvjuwfj8odCte8KeSULwejH8UdHoZ2i/zvUc7B4ZmP7sxzgElheb
1zb9hqJ2BUt+q82nqwdWlu0IbEOiWrnDATbr81acBmoA2/GzctBgKD3GTr59g7NL
DrX+dBgB0mdBZrni4mQQ3NfuTofi4ISU09gXpq7fCc/ziLWcYi/on3IwHcGoUrnR
ACXRmQnm/CqUpE/TswAxrIi0gEm01cFAweJoZ5u7HZ64MF0J0Vi7ylJ2JshANraY
pJCt6ROepm8i+fUsS2vMLQOimdHSm+JNaqp3HX7RfJVQeic3p6k23w==
=RCKf
-----END PGP SIGNATURE-----
References:
|
|
