oss-sec mailing list archives

Re: Telnetd Vulnerability Report


From: Solar Designer <solar () openwall com>
Date: Wed, 25 Feb 2026 17:54:49 +0100

On Wed, Feb 25, 2026 at 07:46:07AM -0500, kf503bla () duck com wrote:
telnet is extremely old and just because there is still widespread use of telnet or the daemon, doesn't provide a 
valid reason to keep using it. these trivial vulnerabilities keep popping up and if you still insist of using telnet, 
you deserve getting pwned

I mostly let these messages through so far (rejecting only one, which
had even less value), but as a moderator I declare end of sub-thread
now.  Further messages on "Who uses telnet anyway?" will be rejected by
default, unless they truly add something new.

Messages on actual security issues/fixes in telnet are still desirable.

Alexander

P.S. I first wrote the above in a confusing manner, not clarifying it's
only end of sub-thread started by kf503bla, not the entire thread.
Corrected now, and I'll only let this corrected message to oss-security.


Current thread: