Date: Thu, 17 Jan 2002 13:49:10 -0500 (EST) From: "Jim Flowers" <jflowers@cantoncommerce.com> To: Andrew Houghton <aah@acm.org>, freebsd-isp@FreeBSD.ORG Subject: Re: How to secure telnet? Message-ID: <200201171849.g0HInAV01755@lily.ezo.net> In-Reply-To: <DFEBLBPNIMCBCMIBDEOACELFEAAA.aah@acm.org> References: <DFEBLBPNIMCBCMIBDEOACELFEAAA.aah@acm.org>
next in thread | previous in thread | raw e-mail | index | archive | help
set up a sacrificial host and allow only telnet through your firewall to it. Allow only ssh -2 from it to your server that has the shell accounts and firewall out access from it to any of your other machines. Optionally include a portsentry scanner and keep an eye on the logs. > I have a server for shell accounts, and up to now the only way people have > been able to access it is via SSH. One of the users is leaving for a > year-long, round-the-world jaunt. > > SSH is pretty much out of the question for him -- if he can find an internet > cafe in some of the places he's going, he won't be able to install new > software, it would probably take years just to download a client over a 56K > link, etc. etc. > > I'd like to support him by making telnet available to him. Any thoughts on > the best/most secure way to do this? > > - a. > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message -- Jim Flowers<jflowers@ezo.net> To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200201171849.g0HInAV01755>