Gee, I don't have this problem with tftp. Just setup tftp
to use IP based authenetication, and setup IP spoofing filters on
the entrance points to the network. If you haven't done these
in the first place, you have no business talking about security
in an IP environment. And if you have done these it really isn't
an issue.
(Which was why I ignored the post about tftp being a security problem,
because it only is a problem if you network is setup poorly
in the first place.)
Give me a break, Cisco's have had tftp for a long time, and I've
never heard of a breakin into a cisco router via tftp. (Obscure
SNMP bugs, yes, tftp no.)
I just can't see how much difference a tftp interface could
be than a telnet interface. Particuarly seeing
as "tftp" is an undocumented command in 3.1.3, even if it
doesn't seem to actually DO anything.
-- ---------------------------------------------------------------------------- | Jeremy Porter (512)-339-6094 Freeside Communications, Inc. info@fc.net | | jerry@fc.net (512)-339-4466 (data) P.O. Box 530264 Austin, TX 78753 | ----------------------------------------------------------------------------