You are here

Home » Forums » Development » General

Question about telnet

2 posts / 0 new
Log in or register to post comments
Last post
Sat, 01/13/2024 - 16:45
#1
KI7QIB
Question about telnet
A telnet exploit via Curl was reported recently https://curl.se/docs/CVE-2023-27533.html.

I am relatively new to running a Mesh server (on a hAPlite).  I noticed that Telnet is ON by default.  I've always been told that would be a security hole.

Would it make sense to make the default be OFF?

 
Top
Mon, 01/15/2024 - 14:28
w6bi
w6bi's picture
Telnet
On the AREDN network, it's not much of a hole.   Someone would need a lot of skill and patience to capture a telnet login.  But it's up to you, Mike.   

Frequently when the AREDN code gets all tangled up (which isn't all that often anymore), the ssh daemon crashes.  But if telnet is enabled, it frequently stays running, so is available for access and subsequent troubleshooting.

Orv W6BI
 
Top

Theme by Danetsoft and Danang Probo Sayekti inspired by Maksimer