You're absolutely correct, in that yes, the clear text version IS the inferior way to go about your auth. However, many corporations that are looking to leverage this kind of a solution are still sending their passwords over clear text via telnet anyway.
It is certainly possible (and the way that I implemented it at my client) to use this with TLS. However, it adds a lot of complication which was not possible to address in the article.
Learn about Linux
Download Linux
Get Linux help
Re:Wow..dont try this!!
Posted by: Lanrx on December 22, 2004 09:41 AMIt is certainly possible (and the way that I implemented it at my client) to use this with TLS. However, it adds a lot of complication which was not possible to address in the article.
#