Date: Wed, 31 Oct 2001 13:43:42 -0800 From: "Crist J. Clark" <cristjc@earthlink.net> To: alexus <ml@db.nexgen.com> Cc: freebsd-questions@freebsd.org Subject: Re: telnet Message-ID: <20011031134342.C246@gohan.cjclark.org> In-Reply-To: <000501c161d6$21529380$0f00a8c0@alexus>; from ml@db.nexgen.com on Wed, Oct 31, 2001 at 01:34:44AM -0500 References: <000501c161d6$21529380$0f00a8c0@alexus>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Oct 31, 2001 at 01:34:44AM -0500, alexus wrote: > can i allow only certain users to use telnet Change the permissions on /usr/bin/telnet to 550, put all users who you want to allow to use it into one group, and change the ownership of /usr/bin/telnet to that group. > and all other will have to use ssh only? But that does not stop someone from copying a telnet executable to their home directory and using that. If you set up a firewall on the machine, # ipfw pass tcp from any to any 23 out gid <telnet-group> # ipfw deny tcp from any to any 23 out So that only the "telnet-group" can try to reach the usual telnet port on remote machines. -- Crist J. Clark cjclark@alum.mit.edu To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20011031134342.C246>