Re: [cobalt-users] telnet access to users?

[Kris Dahl <kris@xxxxxxxxxxxxx>]

> I have not tried any of this before b/c I am not currently letting users
> have shell access and even if I did I'm not sure I'd need this feature.
> This solution might work great or might just work for less experienced
> users.  If anyone gets it to work please post your instructions to the list.


This is my whole point really.  I'm not worried about the casual user.  I'm
worried about the hard core guy that is going to get in one way or another.
Any of these 'precautions' seem silly to me, because they WILL find a way to
get into your system if they really want.

Also,

There is nothing wrong with people being able to 'snoop' around a server.
Typically, you aren't able to read stuff that is in other users directory
unless its world readable.  There is nothing wrong with the ablitity to look
at config files, etc. on the server--I have numerous times caught a mistake
in a configuration and notified the sysadmin.  Saves me time, cause I don't
have to wait for the admin to figure out why its not working--I can tell
him/her.

Personally, I have been getting really turned off of the whole leased/shared
server bit.  Its getting SO inexpensive to own and operate your own server
that it really starts to make sense.  If its a small-medium site, you can
host it on a standard DSL line for less that $100 / mo.  I can co-located on
a 10MB network for less that $200 / mo (for like 5 gigs xfer).  Its just
doesn't make sense to share servers anymore (IMHO).  I'm kinda excited about
the Cursoe chips--think instead of having a virtual host, you have a real
web server that is no larger than a 3.5" hard drive.  Cheap too.

I would really like to see cobalt get into the super-micro-server--single,
dedicated host per site.  Single Board Computers, etc.

-k