Date: Thu, 19 Nov 1998 21:50:32 -0500 (EST) From: David Gilbert <dgilbert@velocet.net> To: Stefan `Sec` Zehl <sec@require-re.42.org> Cc: freebsd-security@FreeBSD.ORG Subject: no more pty's / lockout Message-ID: <13908.55544.854706.2736@trooper.velocet.ca> In-Reply-To: <19981120003245.A5204@matrix.42.org> References: <19981120003245.A5204@matrix.42.org>
next in thread | previous in thread | raw e-mail | index | archive | help
>>>>> "Stefan" == Stefan `Sec` Zehl <sec@require-re.42.org> writes: Stefan> Hi, I just relized, that any user on a system can disable Stefan> remote logins completely by allocating all available tty's Stefan> (with xterm p.ex.) Stefan> Since quite some boxes are remotely adminned, i think this is Stefan> worth a fix. Stefan> What about adding a fallback-no-tty-mode to telnetd ? ssh (and I believe rsh... but I don't use it) will allow a login without an available tty as follows: ssh -l root <hostname> "bash -i" Dave. -- ============================================================================ |David Gilbert, Velocet Communications. | Two things can only be | |Mail: dgilbert@velocet.net | equal if and only if they | |http://www.velocet.net/~dgilbert | are precisely opposite. | =========================================================GLO================ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?13908.55544.854706.2736>