On Tue, Feb 25, 2003 at 12:26:00PM -0600, John Nichel wrote: > Curious here....if I telnet into my system as a regular user, then su to > root, aren't I sending my password in plain text across the network?
Yep - you sure are. Thats why ssh is always the preferred way to login remotely, even when you are not root. It protects all user accts equally well. Since having access to your system as any user can be a hacker's first step to getting root access even "normal user" remote logins should be done via ssh. Telnet isn't bad or evil. its just that its like leaving your wallet on a park bench for a day. Don't expect the money (or the wallet) to be there when you get back... (yes in some towns it would still be there or someone would turn it into the police, but we don't want to depend on that.) -- Jeff Kinz, Emergent Research, Hudson, MA. "[EMAIL PROTECTED]" "[EMAIL PROTECTED]" copyright 2003. Use is restricted. Any use is an acceptance of the offer at http://users.rcn.com/jkinz/policy.html. -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list
