FTP Server
David Saldana
dsaldana at wischip.com
Fri Apr 9 21:38:11 UTC 2004
Hi Ed
The reason I want to do this is because I as administrator of that
server want to be able to access the server to create accounts, with out
going to the console to do this.
I know that it is something that I have to take seriously I will
restrict the ssh access to just one machine with just one account.
Thanks
David
-----Original Message-----
From: redhat-list-bounces at redhat.com
[mailto:redhat-list-bounces at redhat.com] On Behalf Of Ed Wilts
Sent: Friday, April 09, 2004 2:34 PM
To: General Red Hat Linux discussion list
Subject: Re: FTP Server
On Fri, Apr 09, 2004 at 10:14:40AM -0700, David Saldana wrote:
>
> I have an external FTP server. the server now is just
> accepting FTP connection which is fine but I would like that some
people
> form our company have telnet, ssh or rlogin connection, how can I open
> this type of connection without affecting security?.
You *will* affect security. If you give a user interactive access, they
can do things to your system they couldn't do before. They could fill
/tmp or /var/tmp and effectively shut down your e-mail processing or
other processing that wants to create temporary files there.
If you have a local root exploit, they can exploit that where they might
not have been able to before.
The users can easily get a list of all the usernames on the system,
something they couldn't do before.
Giving any user interactive access is not something to be taken lightly.
--
Ed Wilts, Mounds View, MN, USA
mailto:ewilts at ewilts.org
Member #1, Red Hat Community Ambassador Program
--
redhat-list mailing list
unsubscribe mailto:redhat-list-request at redhat.com?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list
More information about the redhat-list
mailing list