Forum

Page 1 of 2 12 LastLast
Results 1 to 15 of 21
  1. #1
    Join Date
    July 2010
    Location
    Madrid
    Posts
    106

    Change Telnet cmd line to SSH

    Why not made that change? I think that should be more secure.

    Telnet VS SSH

    Telnet, by default, does not encrypt any data sent over the connection (including passwords), and so it is often practical to eavesdrop on the communications and use the password later for malicious purposes; anybody who has access to a router, switch, hub or gateway located on the network between the two hosts where Telnet is being used can intercept the packets passing by and obtain login, password and whatever else is typed with a packet analyzer.


    SSH uses public-key cryptography to authenticate the remote computer and allow it to authenticate the user, if necessary. Anyone can produce a matching pair of different keys (public and private). The public key is placed on all computers that must allow access to the owner of the matching private key (the owner keeps the private key secret). While authentication is based on the private key, the key itself is never transferred through the network during authentication.
    SSH only verifies if the same person offering the public key also owns the matching private key. Hence, in all versions of SSH it is important to verify unknown public keys, i.e. associate the public keys with identities, before accepting them as valid. Accepting an attacker's public key without validation will authorize an unauthorized attacker as a valid user.

  2. #2
    Join Date
    June 2002
    Location
    Krün / Germany
    Posts
    1,638
    if you want this extra security, why not use an ssh tunnel?

    Update
    Server version 3.3.0 allows you to use SSH. Please read the changelog.
    Last edited by dante696; November 14th, 2018 at 08:52 AM.

  3. #3
    Join Date
    July 2010
    Location
    Madrid
    Posts
    106
    I've answered my question with another ...

    And .. Why not securing the program natively?
    Telnet, should be prohibited in the development of the applications. I see no complication at the level of programming to give the utility of local connections are via Telnet, and remote connections using SSH to provide security.

  4. #4
    Join Date
    April 2015
    Posts
    153

    SSH v2 instead of telnet and a command to reload query white and blacklist

    As the title says, ssh v2 instead of insecure telnet would be nice and a possibility to reload query ip lists

  5. #5
    Join Date
    June 2011
    Location
    Germany
    Posts
    4,368
    Has been discussed several times. Noone prevents you from using SSH and run telnet ::1 10011.

  6. #6
    Join Date
    April 2015
    Posts
    153

    SSH2 instead of Telnet

    Hello,

    Please go from telnet to ssh2 for the query interface. Telnet is outdated and insecure.

    Greetings,
    Flo

  7. #7
    Join Date
    April 2015
    Posts
    153

    SSH2 instead of Telnet

    Hey,

    When will TeamSpeak go to SSH instead of insecure telnet?

  8. #8
    Join Date
    April 2011
    Location
    Germany
    Posts
    1,266
    You call already do such things with ssh...
    ssh <your server> -N -W127.0.0.1:10011

    This will start a SSH-Session with your Server -N (no remote shell is executed) and stdin & stdout of your computer will be linked throu ssh to -W (remote host (it's 127.0.0.1 in the point of view ot the server, so its the server self) and port 10011)... this will spawn a secured TSServerQuery... qed.

  9. #9
    Join Date
    February 2017
    Location
    Australia
    Posts
    110
    That's pretty good
    Wondering how I can apply this to putty/kitty though

    I found the 'don't start a shell or command at all' which sounds like -N
    but nothing for -W

    It would be cool if teamspeak also offered a websocket, the a pretty secure web managment interface could be produced. which goes in line with the choices to implement a web renderer into the desktop client :V

  10. #10
    Join Date
    June 2011
    Location
    Germany
    Posts
    4,368
    Quote Originally Posted by Scratch. View Post
    That's pretty good
    Wondering how I can apply this to putty/kitty though
    Type "telnet localhost 10011".

  11. #11
    Join Date
    February 2017
    Location
    Australia
    Posts
    110
    Quote Originally Posted by numma_cway View Post
    Type "telnet localhost 10011".
    Microsoft Windows [Version 10.0.14393] (c) 2016 Microsoft Corporation. All rights reserved.

    [email protected] C:\Users\Rin>telnet localhost 10011
    'telnet' is not recognized as an internal or external command,
    operable program or batch file

  12. #12
    Join Date
    June 2011
    Location
    Germany
    Posts
    4,368
    PuTTY and Windows are different products.

  13. #13
    Join Date
    April 2011
    Location
    Germany
    Posts
    1,266
    Or perhaps use a reasonable operating system, that will instantly accept: ssh <your server> -N -W127.0.0.1:10011

  14. #14
    Join Date
    June 2011
    Location
    Germany
    Posts
    4,368
    Code:
    Microsoft Windows [Version 6.1.7601]
    Copyright (c) 2009 Microsoft Corporation. Alle Rechte vorbehalten.
    
    C:\Users\Redeemer>plink [email protected] -nc localhost:10011
    [email protected]'s password:
    TS3
    Welcome to the TeamSpeak 3 ServerQuery interface, type "help" for a list of comm
    ands and "help <command>" for information on a specific command.
    Nice. Just changed YaTQA to use this command instead of opening a telnet session.

  15. #15
    Join Date
    April 2015
    Posts
    153

    Finally introduce TLS and SSH

    Please replace telnet with sshv2 and ssl with tlsv1.2. Telnet is so damn outdated and insecure. And no, ssh tunnels are not a solution, just a workaround.
    Last edited by dante696; October 9th, 2017 at 08:41 AM. Reason: merged

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. [Not possible] Change port without connecting threw telnet
    By BELZI in forum Server Support
    Replies: 2
    Last Post: May 4th, 2015, 02:01 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •