Re: Configuring services for unusual ports

From: Brendon Caligari (bcaligari_at_nospam.fireforged.com)
Date: 12/13/04 

Date: Mon, 13 Dec 2004 15:39:17 +0000

Conner Destron wrote:
> "Brendon Caligari" wrote:
>
>>Conner Destron wrote:
>>
>>>"IANAL_VISTA" wrote:
>>>
>>>>"Conner Destron" wrote:
>>>>
>>>>
>>>>>Ok, I'll bite, why is telnet such a bad idea? Or, to phrase it
>>>>>differently, why is ssh so much better?
>>>>
>>>>Simply put ssh encrypts the packets between the two systems.
>>>>With telnet passwords & all other traffic is sent in clear text
>>>>which leave the risk of it being sniffed & compromised.
>>>
>>>So it's basically just the concern about sending clear-text?
>>
>>Well...it does go bitta beyond that...like you know that
>>1) the machine your're talking to IS the machine you believe you're
>>talking to.
>>2) data exchanged is not not tampared with - i.e. nobody along the way can
>>insert any new packet 'faking it' as part of the original conversation.
>>3) anybody listening in to the conversation will not be able to decipher
>>what is being exchanged.
>>
>>ssh is more than just secure terminal access. The same keys and port 22
>>can be used for file copy (scp) and file transfer (sftp). Somebody else
>>already mentioned the joys of passwordless authentication and tunneling.
>
>
> Ok, so, SSH clears up the clear text issues, thus avoiding possible
> spoofing/tampering/eavesdropping (without serious effort), and uses keys to
> verify the identity of the machine, if you already have the right key for
> that machine to verify against.... and it also lets you run some other
> services via tunneling through the same port. Guess it sounds better, but
> damn I'm awfully used to telnet. ;)
> -=Conner=-
>

In practice for every day stuff it doesn't get any more complicated.
Just fire up PuTTY (which is also just as capable a telnet client) and
press a button (yes...it has a nice address book).

B.

Relevant Pages

  • Re: Configuring services for unusual ports
    ... The same keys and port 22 ... > already mentioned the joys of passwordless authentication and tunneling. ... that machine to verify against.... ... services via tunneling through the same port. ...
    (comp.os.linux.misc)
  • Re: Tunnelling?
    ... There are several ways to tunnel port 2000 depending on how strict ... "tunneling" to avoid detection of your ... activities or to bypass firewall rules is a serious offense. ... Try Webroot's Spy Sweeper Enterprisefor 30 days for FREE with no ...
    (Security-Basics)
  • Re: Any Go To Assist alternatives for Linux
    ... I look at my monitor and see what the other box has on it's monitor. ... What worries me is having to install 65 port forwards in my ... router's iptables firewall. ... OpenVPN and opening the tunneling behind the firewall? ...
    (comp.os.linux.misc)
  • Re: FTP login problem
    ... another FTP with a different port like 22 my browser nor FTP client will ... accepting the port, authenticating. ... Verify that the destination IP address is correct. ... 2)crease the connection timeout threshold under Global Settings | ...
    (microsoft.public.windows.server.sbs)
  • Re: interfaces lo:1 lo:2 lo:3? (for remote ssh tunnels)
    ... I think you're tunneling thw wrong way, ... You will want the 2.0 beta, the current release wants a separate port ... >runs on office computers that listens for a connection from the ... >server, so it can handle the menuing on campus. ...
    (Debian-User)