[CentOS] Understanding iptables

Fri Jul 11 11:38:04 UTC 2008
Rainer Duffner <rainer at ultra-secure.de>

Filipe Brandenburger schrieb:
>
>
> P.S.: Once again: although it's great that you are digging into the
> problem, using iptables, and learning a lot on the process, you should
> *REALLY* consider ditching rsh/rlogin and sticking to SSH. I would
> consider using rsh/rlogin instead of SSH today about the same as using
> gopher instead of the WWW these days (for those of you who still
> remember it).
>   


In an isolated subnet (where the only users are root anyway on all 
machines - think research lab), it might have its uses (e.g. when ssh 
via key-authentication is too slow for whatever is needed).

So, I wouldn't ditch it completely.
But on a normal LAN, it's not a good idea.



Rainer