Clear-text is Fine…It’s Internal..
In light of the recent discussions about public websites using SSL or not, our Managed Security Services Provider partner Solutionary discusses the reasons for NOT using clear text protocols even within the enterprise:
- Corporate Insider / Disgruntled Employee
- DMZ Host Compromised Externally
- Internal Host Compromised Externally
Some examples of clear-text protocols and their encrypted alternatives are:
o FTP -> SFTP
o HTTP -> HTTPS
o telnet -> SSH
o SNMPv1 & 2 -> SNMPv3