-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Finn-Arne Johansen wrote: | On Tue, Feb 17, 2004 at 10:10:20AM +0100, [EMAIL PROTECTED] wrote: | |>Package: debian-edu-config |>Version: 0.359 |>Severity: normal |>Quite frightening btw :P |>Please help understand what s it all about: |># dpkg-reconfigure debian-edu-config |>open-backdoor: Not enabled, backdoor parameters not set. |>open-backdoor: Not enabled, backdoor parameters not set.
| On some schools the inbound port 22 is blocked. So we did a tunnel | thing starting an ssh process from the inside to the outside, opening a | reverse tunnel. | | This was done to help some developers (me, among others) and SA to get | into the school from the outside. The a lot of people was asking about | it, and thats why it ended up into the debian-edu-config. The someone | (pere?) made it install in /etc/init.d, and enabled it on std | runlevels. But the backdoor will not open until it is configured. | The config file is in /etc/default/backdoor | | I'm not sure if is sholud be placed in /etc/init.d by default, or maybe | it should be placed in /usr/share/doc/debian-edu-config/tools or | something |
Suggestion:
Place the tunneling daemon in a separate package "ssh-backdoor" (or some other name). It is not nice (and may be a policy violation, I don't remember) to mix daemons and other stuff in the same package.
Replace "backdoor parameters not set" with "please edit /etc/default/ssh-backdoor" and source that file from the script in init.d
