grntbg
Full Member
Omnis anima potestatibus sublimioribus subdita sit.
Posts: 295
|
Post by grntbg on Jul 5, 2020 8:21:25 GMT
As the title implies, this is a suggestion to retire the fifty year-old telnet protocol from active usage in administration. Let this server's development team (if any) or a willing volunteer develop a replacement to "BukkitTelnet" which uses the SSH protocol. If you do not understand the distinction between the two protocols, let it be explained: telnet has no encryption and can be intercepted by capturing traffic between the client and the server. Since telnet facilitated unencrypted data exchange it would be possible for non-administrators to read private messages and more importantly the adminchat. In the event that somebody used a password to access telnet, that could be seen as well. Focusvity already wrote the BukkitSSH plugin which can serve as a replacement candidate against BukkitTelnet. I made this suggestion because of another proposition to remove the "telnet admin" rank, and I suggest that anybody who's interested read that as well. I can forsee somebody claiming that "intercepting traffic between the telnet client and server is extremely unlikely, therefore there is no need for this change" but since there already exists a plugin tailored for TotalFreedomMod, there's no point in not doing it.
|
|
prince
Veteran Member
cool
Posts: 435
| Likes: 969
|
Post by prince on Jul 5, 2020 8:32:07 GMT
vouch
|
|
lyicx
Full Member
Asst. Server Liaison
fuck raid and fuck babe ;)
Posts: 234
| Likes: 471
|
Post by lyicx on Jul 5, 2020 8:36:56 GMT
vouch
|
|
StevenNL2000
Forum Admin
Posts: 6,415
| Likes: 6,936
IGN: StevenNL2000
Timezone: UTC+01:00
Member is Staff. Need immediate assistance? Send a PM
|
Post by StevenNL2000 on Jul 5, 2020 8:44:56 GMT
|
|
fionn
Club 4000 Member
Admin Officer
elmon sucks
Posts: 6,157
| Likes: 4,775
|
Post by fionn on Jul 5, 2020 8:56:13 GMT
Vouch
|
|
|
Post by DragonSlayer2189 on Jul 5, 2020 8:58:40 GMT
i would like to know this as well, until then i shall remain neutral
|
|
grntbg
Full Member
Omnis anima potestatibus sublimioribus subdita sit.
Posts: 295
|
Post by grntbg on Jul 5, 2020 9:02:19 GMT
i would like to know this as well, until then i shall remain neutral This suggestion doesn't hinge on the functionality of that plugin. Rather, it suggests the switch itself and provides several options for crossing that river.
|
|
elmon
Veteran Member
Asst. Server Liaison
fionn sucks
Posts: 1,476
| Likes: 1,842
|
Post by elmon on Jul 5, 2020 9:13:36 GMT
Vouch
|
|
rylie.
Veteran Member
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
Posts: 3,932
| Likes: 5,664
IGN: breedingslave/breedme
Old IGN: Typhlosion147
Discord: Xeoda#2839
Birthdate (MM/DD): 04/26
Timezone: UTC-05:00
|
Post by rylie. on Jul 5, 2020 9:15:37 GMT
Vouch.
|
|
AshazTGA
Veteran Member
Posts: 317
| Likes: 102
|
Post by AshazTGA on Jul 5, 2020 9:44:28 GMT
Vouch, Wize actually revealed a massive Telnet pass into chat once ._.
I still have it btw but I got pbanned shortly after and I didn't do anything with it, if an admin wants to maybe deal with this let me know
|
|
Fleek
Veteran Member
Posts: 3,548
|
Post by Fleek on Jul 5, 2020 10:39:26 GMT
In its current state, it works but not suitable for replacement yet. I was working on a rewrite for while then I forgot, there are some issues with the plugin at the moment but I can fix them should people want a replacement.
|
|
AshazTGA
Veteran Member
Posts: 317
| Likes: 102
|
Post by AshazTGA on Jul 5, 2020 10:50:52 GMT
Vouch, Wize actually revealed a massive Telnet pass into chat once ._. I still have it btw but I got pbanned shortly after and I didn't do anything with it, if an admin wants to maybe deal with this let me know This has been dealt with by Elmon.
|
|
Wild1145
Club 4000 Member
Inactive Player & Inactive Senior Admin
Posts: 10,414
| Likes: 9,680
|
Post by Wild1145 on Jul 5, 2020 12:21:11 GMT
I think this is a good idea, I'm not sure the history on why Telnet was chosen, but we should certainly look to use modern and secure protocols where we can.
|
|
_Windows
Club 4000 Member
Posts: 7,881
| Likes: 9,611
|
Post by _Windows on Jul 5, 2020 17:11:55 GMT
I think this is a good idea, I'm not sure the history on why Telnet was chosen, but we should certainly look to use modern and secure protocols where we can. I'm going to guess that telnet was chosen for its simplistic nature. The protocol is quite simple to work with compared to some others.
|
|
JagWire
Veteran Member
Woof
Posts: 3,734
| Likes: 2,143
|
Post by JagWire on Jul 5, 2020 23:18:54 GMT
I vouch, I feel this is a necessary change to increase security.
Oft: but what name would we change the rank name to, that would be interesting. As we have been used to "telnet admin" for quite some time.
|
|