From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 20371 invoked from network); 28 Dec 2003 04:17:59 +0000 Received: from smtp.gentoo.org (128.193.0.39) by eagle.gentoo.oregonstate.edu with DES-CBC3-SHA encrypted SMTP; 28 Dec 2003 04:17:59 +0000 Received: from lists.gentoo.org ([128.193.0.34] helo=eagle.gentoo.org) by smtp.gentoo.org with esmtp (Exim 4.24) id 1AaSNL-0006Xw-Ki for arch-gentoo-dev@lists.gentoo.org; Sun, 28 Dec 2003 04:17:59 +0000 Received: (qmail 24546 invoked by uid 50004); 28 Dec 2003 04:11:21 +0000 Mailing-List: contact gentoo-dev-help@gentoo.org; run by ezmlm Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@gentoo.org Received: (qmail 9413 invoked from network); 28 Dec 2003 04:11:21 +0000 Date: Sun, 28 Dec 2003 04:10:57 +0000 From: Ciaran McCreesh To: gentoo-dev@lists.gentoo.org Message-Id: <20031228041057.5b04d057@snowdrop.home> In-Reply-To: References: <20031227230614.057982c7@snowdrop.home> X-Mailer: Sylpheed version 0.9.8claws (GTK+ 1.2.10; i686-pc-linux-gnu) Mime-Version: 1.0 Content-Type: multipart/signed; protocol="application/pgp-signature"; micalg="pgp-sha1"; boundary="Signature=_Sun__28_Dec_2003_04_10_57_+0000_AHp6+3RQmLe4fp=T" X-OriginalArrivalTime: 28 Dec 2003 04:11:33.0057 (UTC) FILETIME=[AD74BB10:01C3CCF8] Subject: Re: [gentoo-dev] suggestion: virtual/telnet X-Archives-Salt: f9026eea-5976-460d-8fd8-febd7a4ea7fb X-Archives-Hash: e72a45af98e12594d865feeb0709b78c --Signature=_Sun__28_Dec_2003_04_10_57_+0000_AHp6+3RQmLe4fp=T Content-Type: text/plain; charset=US-ASCII Content-Disposition: inline Content-Transfer-Encoding: 7bit On Sat, 27 Dec 2003 21:55:02 -0500 "Allen Parker" wrote: | I must pipe up on this one. When a user asks for "telnet" they're | usually not aware of the security risks involved. (kinda makes me | wonder why it's installed by default on Debian :-\) Probably the best | way to handle this is to create a virtual/telnet and add a default | package that when uninstalled displays a basic readme saying telnet | isn't secure and why, asks the user if they still want to do it, and | THEN after they've confirmed that they do in fact want telnet, allow | them to emerge whichever telnet they choose. Actually, all of the telnet clients in portage contain a special Gentoo-specific patch which enables rot26 cryptography (a technology developed by UC Berkeley for NASA) for extra security. This rather ingenious symmetric algorithm is entirely backwards compatible with existing servers, and does not even require any server-side updates. We have a mysterious guy known only as 'Gregg' to thank for these. -- Ciaran McCreesh Mail: ciaranm at gentoo.org Web: http://dev.gentoo.org/~ciaranm --Signature=_Sun__28_Dec_2003_04_10_57_+0000_AHp6+3RQmLe4fp=T Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.3 (GNU/Linux) iD8DBQE/7lfm96zL6DUtXhERAtYPAKDPv+YtF69JKD3mwjmFlAq8USY3nACg4pUN esRbjHllnaFGVUW1e3I1wpU= =zggz -----END PGP SIGNATURE----- --Signature=_Sun__28_Dec_2003_04_10_57_+0000_AHp6+3RQmLe4fp=T--