Re: FAQ splinters

To: debian-edu@lists.debian.org
Subject: Re: FAQ splinters
From: Karl Hegbloom <hegbloom@pdx.edu>
Date: Sat, 25 Sep 2004 10:34:31 -0700
Message-id: <1096133671.29762.189.camel@localhost>
In-reply-to: <Pine.LNX.4.58.0409251623120.28971@diablo>
References: <200409212003.43903.rgx@gmx.de> <20040925121929.GW30878@fiachra.ucd.ie> <Pine.LNX.4.58.0409251623120.28971@diablo>

On Sat, 2004-09-25 at 16:26 +0200, Espen Myrland wrote:
>
> ssh root@localhost
> passwd:

This is fine if you are physically at the server, but if you are logged
in from a thin client to LTSP, your password typing will go over the
network in clear-text, since the X11 connection between the server and
the terminal client's X server is not encrypted.  Only if the terminal
is actually running locally on the thin client, rather than projected
onto it but running on the server, will your typing be secured by ssh.

I suppose that for a small school with a closed network where there are
for certain no untrusted computers on the network, this isn't really an
issue.  In most cases there's probably not really anybody sniffing the
network to capture passwords like that...  but you should be aware of
the possibility, and keep it in mind for the times when it does matter
and might be happening.

> xemacs  &

eXtended Emacs Makes A Computer Special.  :-)

-- 
    Karl Hegbloom
(o_  mailto:hegbloom@pdx.edu
//\   jabber:karlheg@jabber.org
V_/_   yahoo:karlheg

Reply to:

References:
- FAQ splinters
  - From: Ralf Gesel|ensetter <rgx@gmx.de>
- Re: FAQ splinters
  - From: Gavin McCullagh <lists_gmc@fiachra.ucd.ie>
- Re: FAQ splinters
  - From: Espen Myrland <espen@toycompute.net>

Prev by Date: Re: FAQ splinters
Next by Date: Re: FAQ splinters
Previous by thread: Re: FAQ splinters
Next by thread: Re: FAQ splinters
Index(es):
- Date
- Thread