On Sun, Mar 2, 2014 at 7:31 AM, Bertho Stultiens <ber...@vagrearg.org>wrote:
> On 03/02/2014 01:14 PM, Mark Wendt wrote: > >> One can also use http://wiki.linuxcnc.org/cgi-bin/wiki.pl?Emcrsh or > >> http://wiki.linuxcnc.org/cgi-bin/wiki.pl?Halrmt for remote controlling. > >> It's an easy thing to use telnet socket in and Android app. > > Telnet is extremely unsecure, with no encryption. In fact, at work, we > > have to disable all telnet services. ssh is much more secure, with both > > the username/password transaction and the the data flow being encrypted. > > Unfortunately, there is no way to specify for LinuxCNC only to bind to > localhost (127.0.0.1) for the remote services as they are apparently > hardcoded to listen on any address. > > However, instead of disabling the service you could simply block outside > access with a machine internal iptables rule and use ssh forwarding to > tunnel the request. > > > -- > Greetings Bertho > Bertho, That's almost correct. You can use tcp wrappers to deny services to certain machines or networks, or allow services to only a certain few. However, we disable the telnet service on all our machines since everything that passes between the machines is clear text. With ssh everything is encrypted. Mark ------------------------------------------------------------------------------ Flow-based real-time traffic analytics software. Cisco certified tool. Monitor traffic, SLAs, QoS, Medianet, WAAS etc. with NetFlow Analyzer Customize your own dashboards, set traffic alerts and generate reports. Network behavioral analysis & security monitoring. All-in-one tool. http://pubads.g.doubleclick.net/gampad/clk?id=126839071&iu=/4140/ostg.clktrk _______________________________________________ Emc-users mailing list Emc-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/emc-users
