Date: Wed, 31 Oct 2001 17:09:51 -0500 From: "alexus" <ml@db.nexgen.com> To: <cjclark@alum.mit.edu> Cc: <freebsd-questions@freebsd.org> Subject: Re: telnet Message-ID: <001701c16258$c3795f40$64625c42@alexus> References: <000501c161d6$21529380$0f00a8c0@alexus> <20011031134342.C246@gohan.cjclark.org>
next in thread | previous in thread | raw e-mail | index | archive | help
i'm talking about telnetd not telnet client ----- Original Message ----- From: "Crist J. Clark" <cristjc@earthlink.net> To: "alexus" <ml@db.nexgen.com> Cc: <freebsd-questions@freebsd.org> Sent: Wednesday, October 31, 2001 4:43 PM Subject: Re: telnet > On Wed, Oct 31, 2001 at 01:34:44AM -0500, alexus wrote: > > can i allow only certain users to use telnet > > Change the permissions on /usr/bin/telnet to 550, put all users who > you want to allow to use it into one group, and change the ownership > of /usr/bin/telnet to that group. > > > and all other will have to use ssh only? > > But that does not stop someone from copying a telnet executable to > their home directory and using that. > > If you set up a firewall on the machine, > > # ipfw pass tcp from any to any 23 out gid <telnet-group> > # ipfw deny tcp from any to any 23 out > > So that only the "telnet-group" can try to reach the usual telnet port > on remote machines. > -- > Crist J. Clark cjclark@alum.mit.edu > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?001701c16258$c3795f40$64625c42>