Hi Ed The reason I want to do this is because I as administrator of that server want to be able to access the server to create accounts, with out going to the console to do this. I know that it is something that I have to take seriously I will restrict the ssh access to just one machine with just one account. Thanks David -----Original Message----- From: redhat-list-bounces@xxxxxxxxxx [mailto:redhat-list-bounces@xxxxxxxxxx] On Behalf Of Ed Wilts Sent: Friday, April 09, 2004 2:34 PM To: General Red Hat Linux discussion list Subject: Re: FTP Server On Fri, Apr 09, 2004 at 10:14:40AM -0700, David Saldana wrote: > > I have an external FTP server. the server now is just > accepting FTP connection which is fine but I would like that some people > form our company have telnet, ssh or rlogin connection, how can I open > this type of connection without affecting security?. You *will* affect security. If you give a user interactive access, they can do things to your system they couldn't do before. They could fill /tmp or /var/tmp and effectively shut down your e-mail processing or other processing that wants to create temporary files there. If you have a local root exploit, they can exploit that where they might not have been able to before. The users can easily get a list of all the usernames on the system, something they couldn't do before. Giving any user interactive access is not something to be taken lightly. -- Ed Wilts, Mounds View, MN, USA mailto:ewilts@xxxxxxxxxx Member #1, Red Hat Community Ambassador Program -- redhat-list mailing list unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe https://www.redhat.com/mailman/listinfo/redhat-list -- redhat-list mailing list unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe https://www.redhat.com/mailman/listinfo/redhat-list
