From owner-freebsd-newbies  Wed May 15 12:15:56 2002
Delivered-To: freebsd-newbies@freebsd.org
Received: from web14805.mail.yahoo.com (web14805.mail.yahoo.com [216.136.224.221])
	by hub.freebsd.org (Postfix) with SMTP id 8767E37B401
	for <freebsd-newbies@freebsd.org>; Wed, 15 May 2002 12:15:49 -0700 (PDT)
Message-ID: <20020515191549.53143.qmail@web14805.mail.yahoo.com>
Received: from [216.112.24.26] by web14805.mail.yahoo.com via HTTP; Wed, 15 May 2002 20:15:49 BST
Date: Wed, 15 May 2002 20:15:49 +0100 (BST)
From: =?iso-8859-1?q?andrew=20mejia?= <mejia_bsd@yahoo.co.uk>
Subject: Re: remote login
To: FreeBSD Newbies <freebsd-newbies@freebsd.org>
In-Reply-To: <TPKIPJ1Y64SROKWV3VSN71M94A71Y2Z.3ce178bc@inspector2>
MIME-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: 8bit
Sender: owner-freebsd-newbies@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-newbies.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-newbies>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-newbies>
X-Loop: FreeBSD.org

 --- inspector.us@omicnet.com wrote: > Hello
> 
> I have enabled telnetd and rlogin on my FreeBSD box
> at home.  From work, 
> I telnet in and get the login prompt on the BSD box,
> however, my passwords 
> don't work.  What else do I need to do?

[andrew]$  1. don't use telnet or rlogin.  turn those
daemons off.  you don't want them listening for
connections.

2. definitely use openssh (you also have to intall
openssl to use openssh).  when you install these
two packages you will be better off and it's ok to
have them listening for connections.

to demonstrate how insecure telnet is, open 2 terminal
windows on your office machine and telnet to your home
machine.

in terminal window one, enter '# snoop a.b.c.d' - this
being the IP address of the machine you are telneting
to.

in terminal window two, telnet to the machine you are
snooping.  watch as your username and passwd and 
everything else are broadcast over your internet
connection on the first terminal window thru the
snoop utility in clear text for anyone who *MAY* be
snooping to grab.

ssh also allows you to 'scp' (secure copy) without
having to really start a telnet session, so you can
just enter one command and it will literally copy
a file from your remote machine to your local machine
securely, without leaving persistent session open.

hope this helps.

[andrew]$
:wq

__________________________________________________
Do You Yahoo!?
Everything you'll ever need on one web page
from News and Sport to Email and Music Charts
http://uk.my.yahoo.com

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-newbies" in the body of the message