[techtalk] *nix comparisons

2000-07-20 Thread Susannah D. Rosenberg
Telsa Gwynne wrote: > > On Sun, Jul 16, 2000 at 09:23:38PM -0700 or thereabouts, Julia Coolman wrote: > > Kind folks: > > One of the *BSD people was explaining the updating process to me > at LinuxTag. What has long put me off is the same reason I keep > delaying Debian: you either wait for a new

Re: [techtalk] login restriction

2000-07-07 Thread Susannah D. Rosenberg
Aaron Malone wrote: > > On Fri, Jul 07, 2000 at 05:36:41PM -0400, Susannah D. Rosenberg wrote: > > maybe "dodgy" is a bad word. "non-extensible" and "klduge" might be > > better. it probably comes down to the fact that, personally, i don't &g

[techtalk] restricting IP

2000-07-07 Thread Susannah D. Rosenberg
Paul Ragogna wrote: > Now for my Query > > I would like to restrict telnet access to my computer to only a few IP > addresses. In order to do this I edited the hosts.deny fill with ALL:ALL, > and the hosts.allow file with the IP adresses which I wanted to allow > access. Unfortunately t

Re: [techtalk] login restriction

2000-07-07 Thread Susannah D. Rosenberg
Brian Sweeney wrote: > > Hey all- > > Thanks everyone for the responses; the setting login to /bin/false is a neat > trick. Also, FYI to those who feared for the security of my server, I DO > have a firewall implemented, and this machine is behind it. I don't have to > worry as much about what

Re: [techtalk] login restriction

2000-07-07 Thread Susannah D. Rosenberg
Aaron Malone wrote: > > On Fri, Jul 07, 2000 at 05:10:21PM -0400, Susannah D. Rosenberg wrote: > > yeah, but it's still a slightly dodgy way of doing it, imho. the > > etc/security/access.conf thing is probably a better way of doing it, or > > putting people int

Re: [techtalk] login restriction

2000-07-07 Thread Susannah D. Rosenberg
Aaron Malone wrote: > > On Fri, Jul 07, 2000 at 01:54:41PM -0400, Susannah D. Rosenberg wrote: > > yeah, but it still leaves rlogind and telnetd flapping in the wind. can > > you say "telnet to port 25", boys and girls? > > > > gaping security flaws are /

Re: security blather Re: [techtalk] login restriction

2000-07-07 Thread Susannah D. Rosenberg
[EMAIL PROTECTED] wrote: > > On Fri, 7 Jul 2000 15:14:59 -0400 , "Fan, Laurel" <[EMAIL PROTECTED]> said: > > >If I can, from my computer, open an "smtp connection" to port 25 on > >somehost, I can run "telnet somehost 25". Neither of which has > >anything at all to do with telnetd. > > I am in

Re: [techtalk] yet another solaris question ...

2000-07-07 Thread Susannah D. Rosenberg
Amanda Owens wrote: > > You should be able to set your path in a .bashrc or .cshrc file (depending > on your shell, I suppose - I seem to have both on my linux box at home, > though we run from a .cshrc file at work). > > In a .bashrc the line would be: > > export PATH=/usr/sbin:/usr/bin:/usr/l

security blather Re: [techtalk] login restriction

2000-07-07 Thread Susannah D. Rosenberg
"Fan, Laurel" wrote: > > Susannah D. Rosenberg, [EMAIL PROTECTED], said: > > yeah, but it still leaves rlogind and telnetd flapping in the wind. can > > you say "telnet to port 25", boys and girls? > > > > gaping security flaws are /bad/. >

Re: [techtalk] login restriction

2000-07-07 Thread Susannah D. Rosenberg
Samantha Jo Moore wrote: > > > Does anyone know how to restrict users on a RHL 6.0 box from being able to > > actually login? I know this sounds strange, but hear me out. I have this > > new mailserver up, and I want people to be able to POP to it to retrieve > > mail, but not anything else. I

Re: [techtalk] login restriction

2000-07-07 Thread Susannah D. Rosenberg
Brian Sweeney wrote: > > Hello all- > > Does anyone know how to restrict users on a RHL 6.0 box from being able to > actually login? > PS-If I could at least make it so that they couldn't login via telnet, THAT > would be a big help... edit /etc/inetd.conf (as root). turn off rlogind and tel