Date: Fri, 21 Sep 2001 20:20:25 +0300 From: Giorgos Keramidas <charon@labs.gr> To: PetBuilder <petbuilder@mediaone.net> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: Telnet & Root access Message-ID: <20010921202025.A75838@hades.hell.gr> In-Reply-To: <000c01c14266$5cc11660$0100a8c0@home> References: <000c01c14266$5cc11660$0100a8c0@home>
next in thread | previous in thread | raw e-mail | index | archive | help
PetBuilder <petbuilder@mediaone.net> wrote: > I'm trying to telnet into a server with 4.3 and I can log in thru telnet > using a regular user name and pass but it will not accept the root log in > and pass. Well, don't. The TELNET protocol (the one uses between the telnet client you are using, and the server you are connecting to, to pass data over the network) does not include any form of encryption. Therefore, the password you are writing on your local terminal travels `through the wires' in a cleartext, unencrypted form. Anyone on an intermediate node running a packet sniffer can grab your password, and then use it to telnet to the machine too. You certainly don't want people being able to telnet to the machine as root now, do you? You should use Telnet with Kerberos, or SSH, if you want to connect to the machine as root. Even then, its always a lot better to connect as a normal user that belongs to the wheel group, and use su(1) to become root. The su(1) command will log the change of userid to the system logs too. -giorgos To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010921202025.A75838>