Firewalls: Re: Plain-text passwords

Firewalls
(November 1996)

Indexed By Thread: [Previous] [Next]

Subject:	Re: Plain-text passwords
From:	Craig Brozefsky <cosmo @ ebs . net>
Date:	Fri, 8 Nov 1996 11:10:16 -0600 (CST)
To:	Todd Graham Lewis <lists @ reflections . mindspring . com>
Cc:	"Jonathan M. Bresler" <jmb @ FRB . GOV>, Lawrence Beobachter <larry @ spmu . runnet . ru>, firewalls @ GreatCircle . COM
In-reply-to:	<Pine . LNX . 3 . 91 . 961107174412 . 294H-100000 @ reflections . mindspring . com>

On Thu, 7 Nov 1996, Todd Graham Lewis wrote:

> SSH is nice, but unless you fork out $500 (or whatever datafellows is 
> charging this week) for a license for RSA, it is illegal to use in a 
> commercial context.
> 

deslogin is pretty good to, and unlike S/Key or SSH, I know of noone who 
has found methods to attack it succesfully.

> We are moving to Kerberos, and I for one love it.  ftp://athena-dist.mit.
> edu/pub/kerberos/README for instructions on how to get it.

Make sure you are using Kerb5 at least, although reportedly there are 
exploits for Kerb5.  Kerb4 should be considered broken IMO.

What context would you be using it in?

Craig Brozefsky				cosmo @
 ebs .
 net
System Administrator			vox: 312-226-1675
EBS.NET					http://www.ebs.net
*****available for limited time only in this dimension****

Follow-Ups:

Re: Plain-text passwords
From: Joshua Heling <jrh @ yellowchicken . com>
Re: Plain-text passwords
From: Todd Graham Lewis <lists @ reflections . mindspring . com>

References:

Re: Plain-text passwords
From: Todd Graham Lewis <lists @ reflections . mindspring . com>

Indexed By Date	Previous:	Re: POP3 proxy From: Craig Brozefsky <cosmo @ ebs . net>
Indexed By Date	Next:	Subnetting and Cisco ACL's From: Rob Sansom <sansom @ connectix . com>
Indexed By Thread	Previous:	Re: Plain-text passwords From: Kent Crispin <kent @ songbird . com>
Indexed By Thread	Next:	Re: Plain-text passwords From: Todd Graham Lewis <lists @ reflections . mindspring . com>