oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Telnetd Vulnerability Report

From: kf503bla () duck com
Date: Wed, 25 Feb 2026 07:46:07 -0500
telnet is extremely old and just because there is still widespread use of telnet or the daemon, doesn't provide a valid 
reason to keep using it. these trivial vulnerabilities keep popping up and if you still insist of using telnet, you 
deserve getting pwned


On Wednesday, February 25th, 2026 at 3:31 AM, Lyndon Nerenberg (VE7TFX/VE6BBM) <lyndon_at_orthanc.ca_kf503bla () duck 
com> wrote:


On Tue, Feb 24, 2026 at 05:05:58AM -0500, kf503bla () duck com wrote:

Who uses telnet anyway? It's deprecated. Everyone uses ssh for any kind of

remote access.


TELNET != login.  Before you utter those words again in the same
sentence, please read the Telnet RFC.  Notice how the term "login"
appears nowhere in that document.

Telnet is a general purpose way to obtain a remote terminal connection.
That it is sometimes used for remote logins is simply a byproduct
of terminals being used to remotely log in to hosts.  But it's far
from the only thing Telnet is used for.

--lyndon
Previous By Date Next
Previous By Thread Next

Current thread: