----- Original Message -----
From: "Sean Young" <[EMAIL PROTECTED]>
> Doesn't Cisco realize that telnet is a security risk on Cisco devices
> especially for us who often has to telnet to the router remotely to
> fix/troubleshoot problems? Because username and password are traveling
> across the Internet in CLEAR TEXT, the risk is too great. I work for
> a company that would not allow us to telnet to the router from the
> Internet to our company routers and switches. I know that SSH (version
> 1) is available on IOS 12.1.x (only on 7000 and GSR platforms). Why
> don't they just implement SSH on all platforms? It is not that difficult
> to do this (in my opinion). Because of SSH lacking in Cisco IOS, I have
> to drive all the way to work to troubleshoot when there is problem.
> This is suck. You could implement all access-list all you like; however,
> the problem is that telnet will no encrypt information especially username
> and password across the Internet. SSH is widely implemented on
> almost all of Unix flavor and Juniper as well. How difficult is it to
> implement it on Cisco IOS?
>
> Anyone disagree?
>
> Sean
>
Yes, Cisco does realize this. This is why SSH is coming out on more and more
devices.
What I always do is setup SSH on a box internal to the network, and then
telnet from their to the routers and switches. And then you can use
Access-lists.
David C Prall [EMAIL PROTECTED] http://dcp.dcptech.com
_________________________________
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
