 | Passwords |  |
- Ordinary passwords should not be sent across insecure network in plain text
- rlogin sends them in plain text
- telnet uuencodes them before sending (7 bit representation of 8 bit data),
but this is not secure
- Receiving program should not accept encrypted passwords, in case they
are just duplicates
- One-shot passwords are secure either in plain text or encrypted
| Slide 44 | ©Copyright 1997 | Jan Newmarch |