"Steven M. Bellovin" <smb@cs.columbia.edu> writes:

> Why do you say this?  As far as I know, there are no generic attacks 
> against CFB, and the weakness of DES is (and always has been) against 
> brute-force key search, which 3DES defends against.

Maybe I'm wrong. If the weakness of CFB lies only in the crypto used,
then 3DES is a lot better. Also telnet doesn't implement any integrity
by itself, and CFB doesn't help much either.

/Johan