[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] root password on RaQ4

At 04:01 PM 8/4/01, you wrote:


> Yes, I agree with Dave. That is why I disabled the admin user's shell
> access completely. I have another completely different ID that never gets
> mail, never FTPs, never logs into the GUI, and is the only user on the
> system that can become root and its password is entirely different than
> root's.  Now if someone manages to grab my admin user password..sure they
> can still do tons of damage through the GUI, but they can't telnet/ssh
period.
>
> Just one more obfuscation I know...but I like it..:)

Well, if they did crack the admin pass and gain full access to the GUI,
couldn't they just turn on telnet access from the GUI? That would thereby
give them access to telnet??

Just a thought....learning...
-Jamie-
http://w-c.net
WebConnection.Net, Inc.
PS...remember too....having the Telnet access enabled only means that authorized users can have "Shell". Telnet as a word does not equal "shell". As for me...telnet is disabled...but my special user has a "shell"....it just has to use SSH to get to the machine. Again, there is no setting on my RaQ2 to enable/disable this shell for admin. It is granted by default and must be disabled from the command line. 

There..hope that was better said..:)

see ya,
Diana

Crest Communications, Inc.		diana@xxxxxxxxxxxxx
Beautiful Sunny Florida		http://crestcommunications.com/
352-495-9359, 425-732-9785 fax