[riot-notifications] [RIOT-OS/RIOT] sys/net/application_layer: add telnet server module & example (#16723)

Koen Zandberg notifications at github.com
Tue Sep 28 11:04:52 CEST 2021


> given that many attacks are launched from inside the network, it would be just blurring. all of this tries to patch a hole which will remain a hole, whatever plaster you use.

Given that the network we're talking about here is either a set of RIOT devices or the link between a RIOT device and the host computer it means that there is already vulnerability in RIOT to abuse or the (more capable) host computer is compromised. Either way, if the "inside network" is compromised you have worse things to worry about than a development telnet server.

I'm not claiming that this secures the telnet server, but it does prevent a large set of attacks against the telnet server and reduces the scope to local attackers only. It makes it easier to reason for a user whether the telnet server can be used for a simple test setup without issues.

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/RIOT-OS/RIOT/pull/16723#issuecomment-928999158
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.riot-os.org/pipermail/notifications/attachments/20210928/3ae1eaee/attachment-0001.htm>


More information about the notifications mailing list