Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

These days telnet comes wrapped in SSL, so it's totally possible to use it securely. I prefer public keys and almost never use telnet, but SSL telnet should be just as secure as password SSH.


What's the point of SSL telnetd, because one could just use ssh? You still have to bring in some heavy crypto libraries (openssl) so 'telnets' isn't any more lightweight solution either. The only reason I can think of is some corporate policy that dictates the use of telnet, and for some reason SSL is approved but ssh, that hacking tool, isn't.


Maybe because of the PKI features of SSL?

For instance...with an SSH client, the first time you contact a new server you're asked to verify the remote host's identity. I bet most of us just blindly type 'y' at this point despite the security implications. On the other hand, with SSL, you can have the server cert signed by a CA the client trusts.


OpenSSH supports PKI-based authentication and server certificate signing as of 5.4. Very useful in big enterprises and higher-security environment.

http://blog.habets.pp.se/2011/07/OpenSSH-certificates


Very cool, thanks for the info.


SSL telnet was created (May 2004) when SSH was not particularly popular yet.


SSH was actively replacing telnet in the late 90's already in any decent institution. At universities it was pretty much the standard. (At least on my side of the globe.)




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: