Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
allow root console access?
#1

I'm running red hat 9 on a x86 (just to set the seen)

 

Could anyone tell me how to allow root console access, though telnet and ftp?

 

I know this is very studid and a very bad security issue, however these machines are used for training purpose and will not have access to the interenet, also the machines can be ghosted at any time if someone does kill the machine.

Reply
#2

figured it out!

 

simply del etc/securetty

 

probably not a good idea either, i made a backup :)

 

If anyone knows a better way please let me know!

Reply
#3

Quote:I'm running red hat 9 on a x86 (just to set the seen) 

Could anyone tell me how to allow root console access, though telnet and ftp?

 

I know this is very studid and a very bad security issue, however these machines are used for training purpose and will not have access to the interenet, also the machines can be ghosted at any time if someone does kill the machine.
 

OMG root .. o_O telnet o_O ftp STOP!! nonono!

 

pheww.. no internet.. ;)

 

Quote:figured it out! 

simply del etc/securetty

 

probably not a good idea either, i made a backup  :)

 

If anyone knows a better way please let me know!
 

ya /etc/securetty allows you to set up where root logins may occur, the default being only tty's or vc (virtual consoles)...

 

add these lines to the 'good' copy (glad to see you backed it up ;))



Code:
pts/0
pts/1
pts/2
pts/3
pts/4
pts/5
pts/6
pts/7
pts/8
pts/9




 

That gives 10 root logins from telnet.. should be enough...

 

Now for ftp.. well it depends, certain ftpd allow root if the above entries are there, others require the config to be edited..

Reply
#4

Wow dont delete securetty :S that implements some nice security :)znx is correc with the

securetty also you might want to add these:

 



Code:
vc/1
vc/2
vc/3
vc/4
vc/5
vc/6
vc/7
vc/8
vc/9
vc/10
vc/11
tty1
tty2
tty3
tty4
tty5
tty6
tty7
tty8
tty9
tty10
tty11




Reply
#5
thanks guys, works fine! i edited the vsftpd config file to allow root access too!
Reply
#6

Hmm, I dont think allowing root access to FTP is a good idea as FTP send data

unencrypted. Have a look at using SSL with FTP

Reply
#7

Quote:Hmm, I dont think allowing root access to FTP is a good idea as FTP send dataunencrypted. Have a look at using SSL with FTP
 

over the internet.. telnet and ftp should be avoided COMPLETELY for root access

 

however .. in a net that never connects.. well thats cool..

Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)