Re: Answers of using SCP

To: "Andre Fassbender" <afassbender@eSeSIX.COM>, <debian-user@lists.debian.org>
Subject: Re: Answers of using SCP
From: "Boris Sagadin" <Boris@spletzone.com>
Date: Wed, 31 Jul 2002 11:32:19 +0200
Message-id: <[🔎] 116e01c23875$90837aa0$9600a8c0@utopia>
References: <[🔎] DDA3679AFA19CD42A33A0F221A0B307A2C0F69@es-adc.intern.ad.esesix.net>

Actually, it's pretty easy, I was just able to login this way in less than
10 tries. Many account providers want to prevent shell logins this
way.. If there's some lag between the two boxes, so much easier.

thor:~# ssh ctrlc@193.x.x.xx
ctrlc@193.x.x.xx's password:
Last login: Wed Jul 31 11:19:57 2002 from ***
bash-2.04$
bash-2.04$
bash-2.04$
bash-2.04$ cat .bash_profile
exit
bash-2.04$

There's P2-400 on the other side :)

In sshd_config you can use AllowGroups and AllowUsers directives, which will
(probably - haven't test this yet) effectively prevent logins to other
users.

Boris

----- Original Message -----
From: "Andre Fassbender" <afassbender@eSeSIX.COM>
To: "Vineet Kumar" <debian-user@virtual.doorstop.net>;
<debian-user@lists.debian.org>
Cc: <Boris@spletzone.com>
Sent: Wednesday, July 31, 2002 10:35 AM
Subject: AW: Answers of using SCP

> From: Boris [mailto:Boris@spletzone.com]
>
> User can easily escape to shell with a few quick CTRL+C
> keystrokes. So this
> won't stop any clueful user.

first, you could deactivate ctrl-c and second you have to got an
accoustic coupler and and 486 at the other side to get strg-c sended at
the right time, but then you also can whistle to exploit that....  ;-)

<snip>

Reply to:

References:
- AW: Answers of using SCP
  - From: "Andre Fassbender" <afassbender@eSeSIX.COM>

Prev by Date: Help needed : Mirror
Next by Date: Re: AA fonts with Windowmaker and Mozilla
Previous by thread: AW: Answers of using SCP
Next by thread: apt-cdrom and loopback .iso files
Index(es):
- Date
- Thread