Re: telnet break-in

To: Nebu John Mathai <nebu@shaw.wave.ca>
Cc: debian-user@lists.debian.org
Subject: Re: telnet break-in
From: George Bonser <grep@shorelink.com>
Date: Sat, 22 Aug 1998 20:53:34 -0700 (PDT)
Message-id: <[🔎] Pine.LNX.3.96.980822205100.4757B-100000@calvin.shorelink.com>
Reply-to: grep@oriole.sbay.org
In-reply-to: <[🔎] 35DF57D1.667359C@shaw.wave.ca>

On Sat, 22 Aug 1998, Nebu John Mathai wrote:

> Interesting ... after reading the above messages, I decided to check out
> my /var/log files and found a whole suite of "in.telnetd[XXX]: connect"
> statements.
> 
> Should I be worried ... or does Debian come secure out of the box?
> 

Debian is as secure as the passwords that you choose. If you have no root
password and go on the internet, you are asking for major problems. Debian
asks you to set a password and create a user account at install time. You
are as secure as the passwords you choose.

You can further limit who can connect with /etc/hosts.allow and
/etc/hosts.deny

For example in /etc/hosts.deny:

in.telnetd: .uu.net 

Would block any login attempts from anyone on a uu.net address.

George Bonser

The Linux "We're never going out of business" sale at an FTP site near you!

Reply to:

Follow-Ups:
- Re: telnet break-in
  - From: "Damir J. Naden" <dnaden@inforamp.net>

References:
- Re: telnet break-in
  - From: Nebu John Mathai <nebu@shaw.wave.ca>

Prev by Date: Re: telnet break-in
Next by Date: SyJet
Previous by thread: Re: telnet break-in
Next by thread: Re: telnet break-in
Index(es):
- Date
- Thread