Go for it.

Yeah!

Is telnetd part of your list?

Best regards,
Bapt

Keep the telnet client. It's still heavily used for more things than
connecting to telnetd... The rest can go as they are nitch usage that can
be served by ports.

Warner

pokedots

Also - about damn time

nc -t well do that for you. (I only know this because I just went
and read the man page for nc as someone mentioned it in this
thread and I wanted to know if infact it supports telnet option
negatiation.)

But this does NOT mean I agree with removal of telnet/telnetd.

Isnt this whole discussion kinda pointless if you consider
this well be handle by packaged base? Those who want these
in there systems can have them, and those that think telnet/
telnetd are a bigger security risk than nc can also remove
them.

So the first step was to create a port with FreeBSD rcmds, here we
are! But I need some eyes to vet it:
https://reviews.freebsd.org/D11345

Thanks.
-- Jeremie

NO ! It's maddening, code vandals periodicaly wanting to delete working code
& pontificating what others globaly should be denied, & forced to do & not do.

One example why FreeBSD should not delete rlogin & telnet etc
3 days ago, a host with broken sshd (bad shared libs version
number), was rescued by ssh to trusted parent host, then rlogin
from that parent host to underlying jail.

3rd party code vandals are Not fit to decide what code should be
denied globaly in other peoples' environments. By all means leave off by
default in /etc/inetd.conf as now, but do Not Vandal Delete !

BSD is not Microsoft replete with masses of clueless users. BSD
includes skilled users who may wish to make their own risk assessments,
without interference.


Cheers,
Julian

You added yet another wrong assumption that ports must live in
/usr/local to the base system, something that was irradicated
20 years ago and has slowly crept back in over the decades.

In message <***@fire.js.berklix.net>, "Julian H.
Stacey
Ahh but there are masses clueless UNIX, Linux, and BSD users. I deal with
these people on a daily basis at $JOB (to them it's %JOB). They're
developers, mostly java developers but others too, who only understand
Microsoft, and that just barely if even that. Worse is the approval they
have for sudo privileges. It's scary. Protecting users from themselves is
the right thing to do.

Part of the issue with rcmds is they don't support encryption, which is why
MIT created kerberized versions of the same utilities. Removing rcmds
solves half the problem. The other is rhosts, implemented by pam_rhosts.
Why in the world do we still allow IP address based authentication? (I
suppose it's OK on a local home network with one or two family members as
users.) Seriously, rhosts is the major reason why rcmds is insecure.

It was pointed out that pam_rhosts is still used by sshd. I think that's
asking for trouble. It's time to discard the rhosts baggage. It's insecure
and why ssh keys were developed in the first place. rhosts should be
deprecated and removed prior to 13.

P.S. This is one issue. There are two others I'd raise here but let's focus
on this one first.

In message <***@fire.js.berklix.net>, "Julian H.
Stacey
I think you might be reading too much into it.

To bring this on topic. Fortune needs to go. The process to remove it has
commenced and will after review be implemented.

Why? Games should be, if anywhere, in ports. Take for example what Red Hat
has done. There are no games in Red Hat 6. Sure you might find some in EPL.
And as of RHEL 7, absolutely nothing. I suspect that they've made the
choice to avoid problems like this. We should do likewise. I would fully
support removal of games from ports as well but I might tolerate them there
-- why if I install gnome or kde do I want to give up MB or GB of precious
disk to games?

This is 2017. I really don't understand why there is so much angst about
this.

Lastly. I'm not totally against games. My 4 and 5 year old grandkids play
games on game tablets. However I would never let my grandkids even see what
fortune spits out. Much of it was offensive. I would have been ashamed had
they seen some of the outputs.

Fortune in base is totally indefensible and for that matter even in ports
it is. It absolutely has to go. I fully support Benno's effort.

To repeat: To say that mcl has animosity toward you is really unfair.
--
Cheers,
Cy Schubert <***@cschubert.com>
FreeBSD UNIX: <***@FreeBSD.org> Web: http://www.FreeBSD.org

The need of the many outweighs the greed of the few.

Putting my Canadian hat on instead of being my frustrated self today:

I think the way forward is to replace fortune in base with a shell script
to conditionally execute ${LOCALBASE}/bin/fortune and if not found advises
the user to ask their sysadmin to install a fortune port/package.

I have a revision in to do the removal and plan on creating a series of
ports based on bsdgames. However I'm totally willing to let someone else
take the lead on this.

I think this is acceptable.

YEA!!!!! Someone that actually knows it is suppose to be called LOCALBASE
and not a hardcoded /usr/local!! I believe a few dozen of these have
slipped in to base over the years.

Now where is a virtual phk beer I can send to Cy?