Re: telnet as root

Michael H. Warfield Thu, 09 Nov 2000 21:37:08 -0800
On Fri, Nov 10, 2000 at 01:30:18AM -0500, David Brett wrote:
> I took a quick look, but I couldn't find exactly what I was looking for.
> I believe a line has to be added to /etc/inetd.conf before root can have
> telnet access.  I remember setting it up on a sun box ( it was easy there,
> all I had to do was uncomment the line)

        No.  It's NOT in inetd.conf (not on Linux nor on Solaris which
is also pam based).

        Several choices...

        1) Don't use telnet as root - use ssh.

        2) Don't use telnet as root - use telnet and sudo.

        3) Don't use telnet as root - use telnet and su.

        4) Edit /etc/securetty and add appropriate ttyp* entries for
the telnet pseudo ttys.  You figure out the details.  You now have the
gun in hand, you figure out how to load it and shoot yourself in the foot.

        5) Edit /etc/pam.d/login and remove the pam_securetty.so line.

        6) DON'T USE TELNET AS ROOT.  Use anyone one of several more
secure options.

> david
> 
> On Thu, 9 Nov 2000, Statux wrote:
> 
> > /etc/securetty
> > 
> > On Thu, 9 Nov 2000, Tyler Owen wrote:
> > 
> > > OK OK before everyone tells me that I should NEVER do this, I know, I know!
> > >  I am just wonder what you have to change to allow root to telnet into a
> > > machine.
> > > 
> > > I got in a discussion with a co-worker and now it is really bothering me
> > > what the answer is and we can't seem to find it.
> > > 
> > > 
> > > Thanks,
> > > Tyler

        The above information provided for entertainment purposes only.
Anyone commiting such acts has no right to assume or claim that any
such instructions come with any warrenty or any assurance of security
or fitness of use.  You load the gun, you point it between your eyes,
you pull the trigger, don't blame me for the results!!!!!

        Mike
-- 
 Michael H. Warfield    |  (770) 985-6132   |  [EMAIL PROTECTED]
  (The Mad Wizard)      |  (678) 463-0932   |  http://www.wittsend.com/mhw/
  NIC whois:  MHW9      |  An optimist believes we live in the best of all
 PGP Key: 0xDF1DD471    |  possible worlds.  A pessimist is sure of it!



_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
Re: telnet as root

Reply via email to
