I'd be interested in your feedback on the following question...

Windows CE supports a Telnet server (SYSGEN_TELNETD) which can be password protected, the only problem with Telnet is that the username and password are sent as clear text, so Telnet isn't secure (anything that requires clear text username and password isn't secure).

If you're building/developing a device then Telnet could be useful during the development/debugging phase - John Spaith (blogs on the CE networking blog) talked about configuring Telnet on a development platform and how to disable authentication (if you're in the corporate network, and developing/debugging a system then why would you need authentication on the system?).

So, here's the question...

If you have a shipping/retail (not debug) device out in the field would you want to be able to secure remote shell (like SSH) into the device? - and if so, what would you use the shell for?

End users could use the Remote Administration (SYSGEN_REMOTECONFIG_FRAMEWORK) UI which is exposed through the HTTP Web Server (SYSGEN_HTTPD) [why do the Telnet and Web Server components have a 'D' on the end of the SYSGEN variable?] - the framework is extensible, so you could add your own remote config pages onto the framework (Chris Gray did an excellent job on the framework!).

So, let me know your thoughts on having a secure remote shell on Windows CE...

- Mike