LISTSERV mailing list manager LISTSERV 15.5

Help for NORDNOG Archives


NORDNOG Archives

NORDNOG Archives


View:

Next Message | Previous Message
Next in Topic | Previous in Topic
Next by Same Author | Previous by Same Author
Chronologically | Most Recent First
Proportional Font | Monospaced Font

Options:

Join or Leave NORDNOG
Reply | Post New Message
Search Archives


Subject: Re: Beer + Wlan
From: "Hallgren, Michael" <[log in to unmask]>
Reply-To:Network management discussion for Nordic region <[log in to unmask]>
Date:Wed, 20 Mar 2002 21:18:01 -0000
Content-Type:text/plain
Parts/Attachments:
Parts/Attachments

text/plain (75 lines)


>
>
> Simon wrote:
> > On Wed, Mar 20, 2002 at 08:10:38PM +0100, John Angelmo wrote:
> >
> >>Simon wrote:
> >>
> >>>Ssh feels like a step in the right direction.
> >>>It's turned into something of a defacto standard for [unix] server
> >>>remote administration, let's hope the same happens for
> >>>routers/switches/etc so we can forget all about telnet.
> >>
> >>ssh is great, using openssh wouldn't be that hard, I THINK
> it has quite
> >>a small footprint. But theres still coming out to many new
> bugfixes and
> >>new releases coming out, updating with new images every second month
> >>isn't that fun.
> >
> >
> > True, openssh would probably be a good base for vendors to
> build from
> > though. The license[1] shouldn't pose to many restriction,
> and Theo & co
> > do have security as a primary goal, despite what the recent
> exploits may
> > indicate.
> >
> On new routers and new switches, implenting openssh woudn't be a
> problem, but on old once, well I don't think that there would
> be enough
> room for both telnet and ssh, but giving admins the choise is better
> then doing nothing
>

In a "worst-case scenario" set up an (Open)SSH serving host on a dedicated
/<large> hooking into the router(s) very close around - ugly, sort of, yes,
but...

> >
> >>>I'd say snmp needs a major overhaul for people to regain
> any amount of
> >>>confidence in it after the recent CERT announcement.
> >>>
> >>
> >>time seems to also be the factor here, in a few months it
> might be OK
> >>once again.
> >
> >
> > That's nice, who needs security through obscurity when we can have
> > security through forgetfulness :)
> >
> I was thinking more that something new might come up.
>
>
> > Seriously though, it would be nice if something came along
> that would do
> > to snmp what ssh did to telnet. Maybe such a thing already
> exists, who
> > knows.
> >

...


Cheers

mh


> >
> > [1]
http://www.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/LICENCE?rev=HEAD
>

Back to: Top of Message | Previous Page | Main NORDNOG Page

Permalink



LISTSRV.NORDU.NET

CataList Email List Search Powered by the LISTSERV Email List Manager