[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] OpenSSH on Raq2 help

Subject: Re: [cobalt-security] OpenSSH on Raq2 help
From: "Gerald Waugh" <gerald@xxxxxxxxx>
Date: Thu, 20 Sep 2001 14:29:45 -0400
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

> He is correct about turning off telnet in admin will turn
off ssh as far as
> user shells go.  You have to remember the raq considers a
shell and telnet
> access on and the same.  I have not tried it but you could
try turning
> telnet on in the admin tool then commenting out the
service in inetd.conf
> file within etc.  That may work because you will leave
shell on and only
> disable telnet, but my disclaimer is I have never tried
it:P.  Another idea
> is to turn telnet on and then use something like ipchains
to block port 23.
>
> Just remember telnet and shell are two different things on
the raq's but the
> admin tool does not make a distinction.
>

Well my RaQ2 does not work like that.
I have telnet turned off in the Control Panel
and
Telnet/Shell turned on for user admin (Modify User) and it
works fine.
You may be talking about the fact that the GUI says
"Telnet/Shell access"
So you can say that telnetd is turned off via Control Panel
Services,
and Telnet/Shell access is turned on for a user in Modify
User.
But since telnetd is turned off, you are only allowing shell
access.
The Modify User should really say "Shell access" not
"Telnet/Shell access"
Gerald

References:
- RE: [cobalt-security] OpenSSH on Raq2 help
  - From: Todd Neal

Prev by Date: Re: [cobalt-security] LDAP
Next by Date: [cobalt-security] NIMDA Attacks - Anyway to deny requests?
Previous by thread: RE: [cobalt-security] OpenSSH on Raq2 help
Next by thread: [cobalt-security] [RaQ3] Easy way to check log files

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index