From owner-freebsd-hackers  Fri Dec  5 13:08:52 1997
Return-Path: <owner-freebsd-hackers>
Received: (from root@localhost)
          by hub.freebsd.org (8.8.7/8.8.7) id NAA08809
          for hackers-outgoing; Fri, 5 Dec 1997 13:08:52 -0800 (PST)
          (envelope-from owner-freebsd-hackers)
Received: from unix.tfs.net (as1-p17.tfs.net [139.146.205.17])
          by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id NAA08777
          for <freebsd-hackers@freebsd.org>; Fri, 5 Dec 1997 13:08:25 -0800 (PST)
          (envelope-from jbryant@unix.tfs.net)
Received: (from jbryant@localhost)
	by unix.tfs.net (8.8.8/8.8.5) id PAA00924;
	Fri, 5 Dec 1997 15:04:47 -0600 (CST)
From: Jim Bryant <jbryant@unix.tfs.net>
Message-Id: <199712052104.PAA00924@unix.tfs.net>
Subject: Re: Telnet Root access
In-Reply-To: <199712051941.NAA18863@home.dragondata.com> from Kevin Day at "Dec 5, 97 01:41:04 pm"
To: toasty@home.dragondata.com (Kevin Day)
Date: Fri, 5 Dec 1997 15:04:23 -0600 (CST)
Cc: freebsd-hackers@freebsd.org
Reply-to: jbryant@unix.tfs.net
X-Windows: R00LZ!@#  MS-Winbl0wz DR00LZ!@#
X-Operating-System: FreeBSD 3.0-CURRENT #0: Mon Dec  1 15:51:40 CST 1997
X-Mailer: ELM [version 2.4ME+ PL31H (25)]
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-hackers@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk

In reply:
> > I've just installed FreeBSD 2.2.5 via FTP, and I can telnet into the machine
> > using any other user than root. The prompt simply says that the login fails,
> > but any other users is OK. I've check capitalisation, but I'm not sure why
> > this is happening.
> > 
> > If anyone has any ideas, please reply
> > 
> > Thanks.
> > Steven Fletcher
> > steven@shellnet.co.uk
> > 
> > 
> > 
> 
> You can't telnet in as root, as pty's aren't considered 'secure'.
> 
> You have to telnet in as a user, then su.
> 
> Kevin

one can argue that if logging in as root via telnet is insecure, then
using su while logged in via telnet is just as insecure.

as i said in my earlier message [freefall is running slow today], i do
highly suggest getting the ssh/sshd package for the purpose of logging
in via insecure connections, even then, i still recommend using su.

btw: you CAN log in as root via telnet, but i'm not going to have the
finger pointing at me for telling this guy which configuration file to
change, which by default diallows root logins over a pty.

is ssh/sshd a package yet?  last time i made it, i had to build it
myself...

jim
-- 
All opinions expressed are mine, if you    |  "I will not be pushed, stamped,
think otherwise, then go jump into turbid  |  briefed, debriefed, indexed, or
radioactive waters and yell WAHOO !!!      |  numbered!" - #1, "The Prisoner"
------------------------------------------------------------------------------
Inet: jbryant@tfs.net    AX.25: kc5vdj@wv0t.#neks.ks.usa.noam     grid: EM28pw
voice: KC5VDJ - 6 & 2 Meters AM/FM/SSB, 70cm FM.   http://www.tfs.net/~jbryant
------------------------------------------------------------------------------
HF/6M/2M: IC-706-MkII, 2M: HTX-212, 2M: HTX-202, 70cm: HTX-404, Packet: KPC-3+