Received: from PACIFIC-CARRIER-ANNEX.MIT.EDU by po7.MIT.EDU (5.61/4.7) id AA08540; Thu, 14 Dec 95 19:22:34 EST Received: from Lehman.COM by MIT.EDU with SMTP id AA02853; Thu, 14 Dec 95 18:03:39 EST Date: Thu, 14 Dec 95 18:03:39 EST From: MAILER-DAEMON@MIT.EDU (Mail Delivery Subsystem) Subject: Returned mail: Deferred: Connection timed out during user open with cebaf1.cebaf.gov Message-Id: <9512142303.AA02853@MIT.EDU> To: owner-kerberos@MIT.EDU ----- Transcript of session follows ----- 451 pfenning@techfak.uni-bielefeld.de... reply: read error 451 pfenning@techfak.uni-bielefeld.de... reply: read error 421 gardenia.saclay.cea.fr.tcp... Deferred: Connection timed out during user open with oeillet.saclay.cea.fr 451 frankg@frankg.cc.vt.edu... reply: read error 451 frankg@frankg.cc.vt.edu... reply: read error >>> RCPT To: <<< 553 unknown or illegal user: DJMSYS@ritvax.isc.rit.edu 550 DJMSYS@ritvax.isc.rit.edu... User unknown 451 KHAAM@asuvm.inre.asu.edu... reply: read error 451 KHAAM@asuvm.inre.asu.edu... reply: read error 451 cmsdadam@kryten.cms.livjm.ac.uk... reply: read error 451 cmsdadam@kryten.cms.livjm.ac.uk... reply: read error 451 emmanuel.kordomenidis@almac.co.uk... reply: read error 451 emmanuel.kordomenidis@almac.co.uk... reply: read error 421 suite.com.tcp... Deferred: Connection timed out during user open with bilbo.suite.com >>> RCPT To: <<< 550 ... User unknown 550 ars313@zainet.com... User unknown 421 pencom.com.tcp... Deferred: Connection timed out during user open with mushroom.pencom.com 421 calum.csclub.uwaterloo.ca.tcp... Deferred: Connection timed out during user open with calum.csclub.uwaterloo.ca 421 cebaf.gov.tcp... Deferred: Connection timed out during user open with cebaf1.cebaf.gov ----- Unsent message follows ----- Received: from Lehman.COM by MIT.EDU with SMTP id AA02672; Thu, 14 Dec 95 18:03:39 EST Received: (from smap@localhost) by lehman.Lehman.COM (8.6.12/8.6.12) id SAA22566; Thu, 14 Dec 1995 18:03:37 -0500 Received: from relay.mail.lehman.com(192.9.140.112) by lehman via smap (V1.3) id tmp022553; Thu Dec 14 18:03:28 1995 Received: from kublai.lehman.com by relay.lehman.com (4.1/LB-0.6) id AA20420; Thu, 14 Dec 95 18:03:27 EST Received: from badger.lehman.com by kublai.lehman.com (4.1/Lehman Bros. V1.6) id AA02598; Thu, 14 Dec 95 18:03:26 EST Received: by badger.lehman.com (SMI-8.6/Lehman Bros. V1.5) id SAA15041; Thu, 14 Dec 1995 18:03:25 -0500 Date: Thu, 14 Dec 1995 18:03:25 -0500 Message-Id: <199512142303.SAA15041@badger.lehman.com> To: mikef@ack.berkeley.edu (Mike Friedman) Cc: kerberos@MIT.EDU Subject: Re: K4 Telnet With Session Encryption In-Reply-To: <4apmmp$jmd@agate.berkeley.edu> References: <4apmmp$jmd@agate.berkeley.edu> From: "Richard Basch" On , 14-December-1995, "Mike Friedman" wrote to "kerberos@MIT.EDU" saying: > I'm pretty sure this has been asked here before, though I've not seen a good > answer. Is there a K4 telnet for the Mac or PC/Windows that supports session > encryption? I've got the Cygnus clients that do authentication only and > I know there are other versions out there with the same limitation. But it's > becoming increasingly important for me to support *fully-encrypted* telnet > sessions from Macs and PC's in our K4 environment. > > Thanks. > > -- > > ------------------------------------------------------------------------ > Mike Friedman mikef@ack.Berkeley.EDU > Data Communication & Network Services +1-510-642-1410 > University of California at Berkeley http://www.Berkeley.EDU/~mikef > ------------------------------------------------------------------------ While there have been some implementations of telnet with encryption, including the support of Kerberos V4, there are no official versions or standards regarding the encryption option. In addition, the encryption option as was implemented, is subject to being hijacked such that sessions are not actually encrypted. Additional versions have had problems where the data was merely obfuscated, not properly encrypted. The good news is that there is work being done in this area, but it is not ready yet. -- Richard Basch URL: http://web.mit.edu/basch/www/home.html Lehman Brothers, Inc. Email: basch@lehman.com, basch@mit.edu 101 Hudson St., 33rd Floor Fax: +1-201-524-5828 Jersey City, NJ 07302-3988 Voice: +1-201-524-5049