From owner-freebsd-questions Thu Jun 25 05:55:38 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id FAA02077 for freebsd-questions-outgoing; Thu, 25 Jun 1998 05:55:38 -0700 (PDT) (envelope-from owner-freebsd-questions@FreeBSD.ORG) Received: from horton.iaces.com (horton.iaces.com [204.147.87.98]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id FAA02059 for ; Thu, 25 Jun 1998 05:55:23 -0700 (PDT) (envelope-from proot@horton.iaces.com) Received: (from proot@localhost) by horton.iaces.com (8.8.7/8.8.7) id HAA16436; Thu, 25 Jun 1998 07:54:45 -0500 (CDT) From: "Paul T. Root" Message-Id: <199806251254.HAA16436@horton.iaces.com> Subject: Re: All Wierd and Pissed Off... To: djv@bedford.net Date: Thu, 25 Jun 1998 07:54:45 -0500 (CDT) Cc: simple@gte.net, freebsd-questions@FreeBSD.ORG In-Reply-To: <199806250424.AAA05682@lucy.bedford.net> from CyberPeasant at "Jun 25, 98 00:24:31 am" X-Organization: USWEST !nterprise Networking - ACES X-Phone: (612) 664-3385 X-Fax: (612) 664-4779 X-Page: (800) SKY-PAGE PIN: 537-7270 X-Address: 600 Stinson Blvd, Fl 1S X-Address: Minneapolis, MN 55413 X-Mailer: ELM [version 2.4ME+ PL22 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG In a previous message, CyberPeasant said: > simple wrote: > > Okay, I'm pretty new to FreeBSD (Unix) in general. I need to have root > > access to my server from a telnet session because I am not always in > > front of the computer, but, well, I think I've found a new love... I > > think everyone on this list will understand this love. > > *kiss* > > > When I try to login to my server as root, it tells me that the login is > > incorrect. I've also tried to login as a normal user and then rlogin as > > root (this works for Red Hat 5.1). I've double and triple checked the > > password I'm typing in is correct. > > Get yourself into the "wheel" group, and use su -l It's best to login as a regular user and then su, as stated, the user needs to be in the wheel group (/etc/group). But if you must login directly as root. Then you need to add the keyword 'secure' to the pty's in /etc/ttys. This is not a good way of doing things. Also, if you want to be even more secure, compile up ssh (I think it's in ports). It will give you an encrypted connection all the way. Nice. > > Now, secondly, like I said I'm new to this stuff. > > > > Is there a way to list all of the user accounts that have been created. > > cat /etc/passwd > > Anybody can do it. If you need to keep track, keep a baseline copy, > then do a diff against the current one. I think the daily security > report will do this, too. > > > With FTP access built into FreeBSD, is it possible to limit the person > > to only the FTP directory and sub-directories beneath that? > > Yeah, but i'm too lazy to look it up. (I don't do it, so it'd be > better for you to look it up than get it second hand from me.) me too. :-) man ftpd. Probably better, again, to install wu.ftpd and maybe tcpd, too. > > Dave > -- > http://www.microsoft.com/security: `Microsoft Windows NT Server is the most > secure network operating system available.' > Don Quixote: `You are mistaken, Sancho.' > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > -- All progress is based upon a universal innate desire on the part of every organism to live beyond its income. -- Samuel Butler To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message