[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [[cobalt-users] Telnet vs SSH1/2 (was: Server Hacked?)]

Subject: Re: [[cobalt-users] Telnet vs SSH1/2 (was: Server Hacked?)]
From: "Richard E. Perlotto II" <richard@xxxxxxxxxxxx>
Date: Mon Feb 14 07:40:01 2000

Comments in-line:

Liz wrote:
> 
> I've got LOTS of questions on this topic! <smile>
> 
> On a Ra3, how about for SSH access?  I have all vsites shell
> access disabled, but is there a way to totally disable
> Telnet but allow SSH only?

SSH access is better, but you are still allowing direct
access to your box.  You need to make the risk verses cost
estimate to see if it is worth it to not allow direct access.

You can disable telnet access in several ways.  There should
be a way via the GUI, but the more sure fire method is to 
comment out the telnet line from the inetd.conf file and do
a kill -HUP on inetd.

> 
> Although I'm still very green in this department I'm going
> to guess the answer is "no" since SSH is still shell access,
> no matter what color the horse it's painted.  If I'm wrong
> on this, please correct me!
> 
> Also -- which ssh mode(?) is more secure, SSH1 or SSH2?

For most purposes you will have, it does not matter which you
use.

> 
> I use SecureCRT but I'm not sure which option would be best
> or what the difference is between ssh1 or ssh2.  In the
> preferences for a SSH2 connection there's two DataFellows
> version.  Which one should I be using -- 2.0.13 or 2.0.12??

Again, there for you there should not be much of a difference.


> 
> Liz
> 
> ------Original Message------
> From: "Toby Miller" <tobymiller@xxxxxxxx>
> To: cobalt-users@xxxxxxxxxxxxxxx
> Sent: February 14, 2000 12:08:23 AM GMT
> Subject: Re: [[cobalt-users] Server Hacked?]
> 
> > One question. At the site admin page, the server admin can
> setup if telnet
> > access is granted. If I am going to disable this option
> for a site, does
> > this automatically mean that this privilege is removed
> from all users of
> > this site ?
> 
> That is the case on the RaQ3.  If the server admin removes
> telnet from a
> site, then all users under that site (including the site
> admin) loose
> telnet.   I am not sure on the Raq2, but I would assume it
> to be true.
> 
> Regards,
> 
> Toby Miller
> 
> ______________________________________________
> FREE Personalized Email at Mail.com
> Sign up at http://www.mail.com?sr=mc.mk.mcm.tag001
> 
> _______________________________________________
> cobalt-users mailing list
> cobalt-users@xxxxxxxxxxxxxxx
> http://list.cobalt.com/mailman/listinfo/cobalt-users

begin:vcard 
n:Perlotto;Richard
x-mozilla-html:FALSE
url:http://www.perlotto.com
org:Home
adr:;;;;;;
version:2.1
email;internet:richard@xxxxxxxxxxxx
x-mozilla-cpt:;-1
fn:Richard Perlotto
end:vcard

References:
- Re: [[cobalt-users] Telnet vs SSH1/2 (was: Server Hacked?)]
  - From: Liz

Prev by Date: Re: [[cobalt-users] Passwords (was: Server Hacked?)]
Next by Date: Re: [[cobalt-users] Server Hacked?]
Previous by thread: Re: [[cobalt-users] Telnet vs SSH1/2 (was: Server Hacked?)]
Next by thread: Re: [[cobalt-users] Telnet vs SSH1/2 (was: Server Hacked?)]

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index