Path: utzoo!utgpu!watmath!clyde!att!ucbvax!CSA3.LBL.GOV!forrest
From: forrest@CSA3.LBL.GOV
Newsgroups: comp.protocols.tcp-ip
Subject: An Obvious Security Problem?
Message-ID: <881109143927.20402284@Csa3.LBL.Gov>
Date: 9 Nov 88 22:39:27 GMT
Sender: daemon@ucbvax.BERKELEY.EDU
Organization: The Internet
Lines: 18

I am a complete novice at matters relating to networking and haven't
read the Telnet RFC so I may be missing something obvious.

Assume the following network organization:


A <------------------> M <------------------> Z

(Node M is actually one or more gateways.) Couldn't a bad guy on M
monitor the TCP/IP traffic looking for Telnet connections and then
follow through the exchange of login names and passwords, thereby
capturing a node/login and password pair? (I realize that the
path from A to Z is dynamic and that this might not always be
possible.)

Jon Forrest
Lawrence Berkeley Lab
FORREST@LBL.GOV