Re: Changes on debian-edu-config
Petter Reinholdtsen wrote:
> [Benjamin Sonntag]
>
.....
>>Ok, but the /etc/default/backdoor file will certainly not change since
>>this init script grew better ...
>>
>>I found #783 : http://bugs.skolelinux.no/show_bug.cgi?id=783
>>for this issue, but it is closed. If the bug is still here, we should
>>reopen it.
>
> I'm not sure if that is the exact problem. I just remember that there
> are problems with the backdoor script.
>
The backdoor script was a hack created by yours truly, to allow remote
connection to an installation where inbound ssh was blocked, but
outbound ssh was accepted. I did not want to submit the hack, but
someone asked me gently, and I submitted it. If you look on a server
that's using open-backdoor, you will see that ther might be several
instances of it running. If you try to kill the running backdoor with
/etc/init.d/open-backdoor stop, you will find that it's still running.
I Myself has not used it since ages, but find it from time to time on
other servers, and most of the times, the person(s) that has set
backdoor up has forgotten all about them.
I've changed into using a combination of ssh+ppp, which is much nicer if
you manage a lot of servers (like I do), but a bit more work to set up.
I would suggest we use remove open-backdoor, and tell people about
openvpn or the possibility of using ssh+ppp. The script I use now is
still a hack, but when monitored, they do work.
But I do not want to include such a feature now, close to the release. I
believe there were far to changes already in our scripts, and we have
caused a lot of extra work.
--
Finn-Arne Johansen
faj@bzz.no http://bzz.no/
Debian-edu developer and Solution provider
EE2A71C6403A3D191FCDC043006F1215062E6642 062E6642
Reply to: