[BusyBox] Are telnetd and login save?
Scott Murray
scottm at somanetworks.com
Fri Jul 18 00:21:56 UTC 2003
On Thu, 17 Jul 2003, Erik Andersen wrote:
> On Thu Jul 17, 2003 at 03:21:38PM +0200, Steven Scholz wrote:
> > Wolfgang Denk wrote:
> > >You will have to be afraid of breakins because someone might record
> > >the passwords you're transferring, and use the regular root login
> > >then.
> >
> > Ok. I know that. I'm not planning to make root logins via telnet on a
> > regular basis! I would use ssh for that (if I needed this).
> >
> > What I meant is: I want to keep the telnet open. Just in case. And
> > when I ever should use it, I know I have to have a secure network
> > (cross link cable ;-)).
>
> In that case, I suppose it should be ok...
>
> I think that the dropbear ssh server may be a better general
> solution however
> http://matt.ucc.asn.au/dropbear/dropbear.html
> since it will give you a very small ssh server that does
> not depend on openssl or any other large libraries...
It is indeed much smaller. In our arm-linux cross build environment here
at SOMA (gcc 2.95.3 with dynamic glibc 2.2.5), the dropbear daemon ends
up being 128152 bytes versus 771724 bytes for the OpenSSH sshd (statically
linked against OpenSSL). Note, however, that in our tests with scp,
dropbear was about 1/3rd the speed versus OpenSSH.
Scott
--
Scott Murray
SOMA Networks, Inc.
Toronto, Ontario
e-mail: scottm at somanetworks.com
More information about the busybox
mailing list