[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: How to block telnet access.



The problem is that they are several teen agrees that will probably give away
their passwords and very soon i will have the whole hacker world in my server.

Since i must give them telnet (ssh actually) access and i can't restrict the
servers witch the ssh will be from (they are using dailup) then i'm pretty
much sure that my security will be broken.
I will install the shadow system ASAP, and will change the passwords(in case
they used a John the ripper on my old passwords) but still.....

Is there a way to control the server time and process that they are using ?
So they could not simply run something that will crush my system ?
Can i limit their access to the network ? So they could not use sniffy in
order to sniff my passwords ?

Most importent...is there any HOWTO that will explain all of this security
holes and how to fix them ?

Thanks,

Mike


guy keren wrote:

> On Thu, 23 Sep 1999, Mike wrote:
>
> > How can i block access to directories and commands on my server ?
>
> using access permissions, groups, etc.
>
> > i need to give telnet access to some ppl and i do not want to give them
> > full access to the disks and commands.
>
> they have only read-only access to directories other then their own and
> '/tmp' and such.
>
> > for example, i do not want to give them access to /etc/
>
> Dave, don't do that.....
>
> if you don't even give them read acces to /etc/, things will start working
> lousily. for example, the shell startup files (/etc/profile r
> /etc/csh.cshrc) won't be accessible to them. /etc/passwd won't be
> accessible and this will break many programs for them....
>
> guy


=================================================================
To unsubscribe, send mail to linux-il-request@linux.org.il with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail linux-il-request@linux.org.il