On Fri, 9 Apr 2004, Steven M. Bellovin wrote:
In message <4076FBAB.6040709@inoc.net>, Robert Blayzor writes:
Petri Helenius wrote:
Put "transport input none" to your tty lines.
That was it. Seems like the default value changed between versions. Thanks.
Wonderful -- a change to default behavior that opens up lots of ports. This is exactly the wrong direction to go in.
No kidding. Another pet peeve of roughly the same category: when you enable IPv6, telnet is automatically open to the world (using v6), even if you have disabled v4 telnet with an access-list. The vendor refused to believe this is a problem, so I'm waiting for v6 deployment to get really started before writing bugtraq. -- Pekka Savola "You each name yourselves king, yet the Netcore Oy kingdom bleeds." Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings