/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting! */ >Usually if you are looking to >connect to your Linux Firewall box from outside, SSH is a good shell to use >instead of TELNET and/or FTP. However, WU_FTPD from the University of >Washignton is known to be secure. This last sentence is COMPLETELY incorrect. The ftp protocol is a non-cryptographic protocol. Passwords are transmitted in the clear. Anyone with access to the wire can "sniff" them. For some cable modem technologies this includes everyone in your neighbourhood with a cable modem. It also often includes everyone in the organization or department where the other side of the connection is located. All the problems of telnet are problems of ftp too. I strongly advise against using telnet or non-anonymous ftp over the internet or over any network without substantial physical security (the network in your house is ok, but not much else is). Wu-ftpd has some security-related improvements, but nothing to do with the basic cleartext password problem which is the only thing I think you could be referring to with telnet. Personally, I don't even run inetd on my ip-masq home gateway machine. (I nevertheless have all the lines in /etc/inetd.conf commented out; disabled daemons have this tendency to get reenabled when doing os upgrades.) I also have outgoing port 23 blocked to avoid accidents from inside our house, since we have a cable modem which makes clear-text passwords particularly problematic. _______________________________________________ Masq maillist - [EMAIL PROTECTED] Admin requests can be handled at http://www.indyramp.com/masq-list/ or email to [EMAIL PROTECTED] PLEASE read the HOWTO and search the archives before posting. You can start your search at http://www.indyramp.com/masq/ Please keep general linux/unix/pc/internet questions off the list.
