'we should all be uncomfortable with the extent to which luck..'

This is, in fact, what we do; it still makes me nervous.


>>> > How many of us here run anything less than SSH and even allow telnetd

>>> > live on any of our hosts?

Hey, we have had to do without SSH in more than one CISCO IOS build in the


6 months in 12.1 / 12.2.

This always made me feel very nervous.

  One way of avoiding this is to always have a console server that has
SSH implemented into the IOS build ( or even a separate vendor that
supports SSH ). This way you centrally access your network devices from

one spot, authenticated by SSH, if any of the devices in question do not
support SSH ( yes this can be impractical, but I typically want to have
console access to every device I administer if possible anyway ).


Marshall Eubanks