-----BEGIN PGP SIGNED MESSAGE-----
On Fri, 8 Nov 1996, Chai Harjo wrote:
> > > Hello!
> > >
> > > I tried tcpdump on FreeBSD and it turned out that login information
> > > during telnet sessions as well as USER and PASS info sent by pop-client
> > > are both xmitted in plain text <shudder>.
> > > Is there any solution besides S/Key (please, include pointers) to
> > > block this don't-know-how-to-call-it hole.
> > Have a look at SSLeay and SSLtelnet. SSL is an excellent freeware
> > implementation of Netscape's SSL (Secure Socket Layer) encryption
> > standard. SSL telnet is a patched version of telnet and telnetd which can
> > use SSL.
> Does Linux do the same thing too?
I run SSL on my home machine (Linux 2.0.23) and the machines I administer
(IRIX 5.3). I haven't tried the SSL telnet for Win yet.
Make sure you use the latest version of SSL-MZtelnet if you run IRIX, the
previous versions didn't work too good. Apart from that it works like a
Dreaming about an SSL POP server... ;)
| Damien Miller -
| Email: dmiller @
sg (PGP and MIME ok)
| WWW: http://www.vitnet.com.sg/dmiller
| PGP public key: send me an email with "send file pgp_key" as the subject
-----BEGIN PGP SIGNATURE-----
-----END PGP SIGNATURE-----