Separate telnet/email & ssh users???

To: debian-security@lists.debian.org
Subject: Separate telnet/email & ssh users???
From: Steve Rudd <srudd@bible.ca>
Date: Thu, 22 Feb 2001 13:43:55 -0500
Message-id: <5.0.2.1.2.20010222133722.025020d0@bible.ca>

Hi!

I tore down my redhat box and installed debian about 3 days ago. I decidedto use separate users and passwd for each telnet and email.


User#1: standard unsecure telnet cuteftp and Eudora.

User#1 has no shell access and is restricted to public "html" filesdirectories.


User#2: CRTssh program
User#2: ssh shell access, but not "su".

The idea is that until eudora and cuteftp come out with their new "shh"secure versions in a few months, the user names and passwords of user#1 arenot a security risk. Why I could even post them on my root page and taunthackers to try and break in with them! I could even offer a 1000 prize foranyone who can crack and hack their way in! (I saw that done at anothersite... real neet!)


What do you think?

Steve

Reply to:

Follow-Ups:
- Re: Separate telnet/email & ssh users???
  - From: "Bob Bernstein" <bob@ruptured-duck.com>

Prev by Date: Re: Anti Virus for Debian
Next by Date: Re: Mac most secure servers?
Previous by thread: Re[2]: Sendmail DOS
Next by thread: Re: Separate telnet/email & ssh users???
Index(es):
- Date
- Thread