| |||||||||||||
Merry Christmas from FreeBSDMerry Christmas from FreeBSDPosted Dec 26, 2011 0:32 UTC (Mon) by oblio (guest, #33465)In reply to: Merry Christmas from FreeBSD by jmalcolm Parent article: Merry Christmas from FreeBSD
At least where I studied for the CCNA exams, they did use telnet.
*But* every time it was through a VPN connection. So telnet didn't really matter much, except for intranet password sniffing, maybe (IMO a much smaller risk).
Now that I think of it, there was a report about most company thefts being perpetrated by employees, so it would be a good idea to use SSH through VPN too :)
(Log in to post comments)
Merry Christmas from FreeBSD Posted Dec 26, 2011 16:44 UTC (Mon) by jmalcolm (guest, #8876) [Link]
Yes, I have seen telnet used on a VPN but this is not a problem as you say. I have also seen it used on the open Internet as well. Crazy town.
In a training environment though, I am surprised they do not stress the use of SSH purely as an educational point.
Then again, the only Cisco training I have been exposed to used 'cisco' as the password on all devices. So, clearly convenience was trumping any demonstration of security best-practices in general.
Merry Christmas from FreeBSD Posted Dec 26, 2011 16:45 UTC (Mon) by drag (subscriber, #31333) [Link]
If you want to try to prevent employee fraud your best bet is to monitor and log their activities on the company provided workstation.
|
|||||||||||||