From owner-freebsd-questions@FreeBSD.ORG Mon Aug 16 16:08:43 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id ABACD16A4CE for ; Mon, 16 Aug 2004 16:08:43 +0000 (GMT) Received: from mtiwmhc11.worldnet.att.net (mtiwmhc11.worldnet.att.net [204.127.131.115]) by mx1.FreeBSD.org (Postfix) with ESMTP id F1E6E43D39 for ; Mon, 16 Aug 2004 16:08:42 +0000 (GMT) (envelope-from jayobrien@worldnet.att.net) Received: from [192.168.1.6] (dsl093-180-184.sac1.dsl.speakeasy.net[66.93.180.184]) by worldnet.att.net (mtiwmhc11) with ESMTP id <2004081616084111100bn7que> (Authid: jayobrien@att.net); Mon, 16 Aug 2004 16:08:42 +0000 Message-ID: <4120DC08.7060206@att.net> Date: Mon, 16 Aug 2004 09:08:40 -0700 From: Jay O'Brien User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.2) Gecko/20040803 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Matthew Seaman References: <41200C8D.8000907@att.net> <20040815215650.6dd9309d.wmoran@potentialtech.com> <4120289C.1090401@att.net> <20040816072948.GB79605@happy-idiot-talk.infracaninophile.co.uk> In-Reply-To: <20040816072948.GB79605@happy-idiot-talk.infracaninophile.co.uk> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit cc: FreeBSD - questions Subject: Re: root access to ftp, telnet -- CP/M? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 16 Aug 2004 16:08:43 -0000 Matthew Seaman wrote: > > Eeek! You do realise you've just sent the root password across your > network in plain text? Maybe your network is completely secure and > you aren't running a risk by doing that, but on the whole it's a > really bad idea. Get into the habit of using ssh(1) routinely for > your own peace of mind, if nothing else. You can also replace ftp(1) > for many purposes by scp(1) or rsync(1) (from the net/rsync port), > both of which operate over ssh(1). > Matthew, Thanks for your concern. Once there is anything on the computer, I will certainly close those security holes. Right now it is only a means to learn about FreeBSD and document the steps necessary to build a machine that will fit my needs. I opened ftp and telnet access to root as a simple way to copy files to and from a windows computer and to control the FreeBSD computer from another location. I do plan to implement ssh, but first I must evaluate PuTTY and other alternatives. In the meantime, it is protected from the internet by a hardware router that doesn't forward any ports to the FreeBSD computer. There's so much to learn! This experience with FreeBSD takes me back to my days with CP/M and S-100 bus computers. Maybe if CP/M had been allowed to grow up, rather than be killed by DOS and Windows, it could have become CP/M-BSD? Jay O'Brien Rio Linda, CA USA