STEL: Secure TELnet
David Vincenzetti, Stefano Taino, and Fabio Bolognesi
<{vince || taino || bolo}@dsi.unimi.it>
CERT-IT
Computer Emergency Resource Team Italy
Department of Computer Science
University of Milan, Italy
Abstract
Eavesdropping is becoming rampant on the Internet. We,
as CERT_IT, have recorded a great number of sniffing attacks
in the Italian community. In fact, sniffing is the most popular
hacker's attack technique all over the Internet. This paper presents
a secure telnet implementation which has been designed by the
Italian CERT, to make eavesdropping ineffective to remote terminal
sessions. It is not to be considered as a definitive solution but
rather as a "bandaid" solution, to deal with one of the most serious
security threats of the moment.
Download the full text of this paper in
POSTSCRIPT (137,947 bytes)
and PDF (169,303 bytes) form.
To Become a USENIX Member, please see our
Membership Information.