Telnet Under the Microscope: Why It's Unsafe for Modern Use

-

Telnet, an early protocol for remote server and device access, was once groundbreaking. However, in today’s era of cybersecurity threats, Telnet’s lack of encryption has made it obsolete and dangerous to use. This blog will demonstrate the security risks of Telnet by capturing and analysing its unencrypted communication over a network.


We Will:


  1. Create two Ubuntu instances using Multipass.

  2. Install and configure a Telnet server on one instance.

  3. Create a user and password on the server.

  4. Capture network packets while authenticating to the server.

  5. Analyse the captured packets to show how credentials are sent in plain text.


Part 1: Introduction and Setting Up Ubuntu Instances


In Part 1, we start by setting up Ubuntu instances using Multipass. We walk through the process of creating a Telnet server and Telnet client, preparing the environment for the next steps.
Watch the video here:



In Part 2, we install and configure the telnetd package on the Telnet server. This is the crucial step in setting up the server so it can accept incoming Telnet connections.
Watch the video here:


In Part 3, we create a new user on the Telnet server, called demo, and set up a password for this user. This step will prepare us for the login process in the next video, where we will test the Telnet connection and observe the insecure traffic.
Watch the video here:




In Part 4, we start the tcpdump packet capture on the Telnet server and initiate a Telnet login from the client. We will capture the traffic as the user logs in and executes a few commands, all while the Telnet protocol transmits sensitive data in plaintext.
Watch the video here:






In Part 5, we analyze the pcap file captured with tcpdump in Wireshark. We highlight how Telnet transmits sensitive information, like usernames and passwords, without encryption. This final part concludes the demo and shows why Telnet should be replaced with secure alternatives like SSH.
Watch the video here:



Through this series, we’ve demonstrated the dangers of using Telnet in modern networks. Telnet’s reliance on plaintext transmission makes it highly vulnerable to man-in-the-middle attacks and eavesdropping. By using tools like Wireshark and tcpdump, we can visualize just how easily Telnet can be exploited to intercept sensitive data.

Thank you for following along with this tutorial series! We hope you found the videos and this guide helpful in understanding the vulnerabilities of Telnet. If you have any questions or need further clarification, feel free to leave a comment below or reach out.

Popular posts from this blog

Certification for Kubernetes? I got it covered.

-
Image
Working in such a rapidly growing software industry, there are new software and certifications which are announced almost every day. And for every new certification announced, you would think that doing it would be cool or help you in your career. Similarly, I saw some of the certification announcements, which included AWS, Azure, Jenkins, Docker, and Kubernetes certification. My initial thought was that I should do each & every one of them, but time passed by and here I am, with just one and only certification "CKA". This made me realize and question myself if completing a certification is necessary. Decision : Here is my take on it. Holding a certification won’t get you on top of the world, and not holding one will not make you fall. That being said, I enrolled to complete CKA, and here are a few points which made it easier for me to decide. 1. Cost : For some, this may not be the most important, but I still consider if its worth spending 200/300$ for it...
Read more

Netcat: ( TCP/IP Swiss Army Knife ) | DevOps | Linux | Use-Cases

-
Image
netcat (often abbreviated to nc ) is a computer networking utility for reading from and writing to network connections using TCP and UDP The command  is designed to be a dependable back-end that can be used directly or easily driven by other programs and scripts. At the same time, it is a feature-rich network debugging and investigation tool, since it can produce almost any kind of connection its user could need and has a number of built-in capabilities.  Features:   - port scanning, transferring files, and port listening, and it can be used as a backdoor The way I learn CLI tools is by first learning the usage of the tool, followed by committing a few simple commands to muscle memory I have tried to cover few use cases with netcat in this video Thanks you, Subscribe osgroup-techies for more  
Read more

What happens when you turn on the wifi on your phone.....

-
Image
Bit Of Theory 😐       DHCP(Dynamic Host Configuration Protocol) : ~                           -  assigns an IP address and other network configuration parameters to each device on a network so they can communicate with other IP networks      My Phone When , I have No Ip  Now I Turn On my wifi (Things Work Happy Me😊 The DORA Process: Behind the Scenes Discover:             - DHCP Client ( your phone in this case ) sends out a DHCP Discover message to find out the DHCP ( your Router ) server What DHCP Discover message looks like? Offer    - DHCP server ( your router ) receives the DHCP discover message from client and sends back the DHCP offer message  How does DHCP Offer messag...
Read more