For most purposes I can immediately for see, I would keep this LinuxCNC to remote web server / monitor network off the WWW anyway. Other than perhaps a wireless link via an AP which can use standard security protocols. These devices are so cheap now, if I want web access near my mill/machine tool, get another Android tablet and link that to the web. Or am I missing something? Most networks in the plants I work in have Web access blocked. So I need to seek out a Web enabled Ethernet port or wireless connection when I want to get outside the plant. Sometimes I have to use my phone as a hotspot so I can download a manual or get an email.
Dave On 3/2/2014 8:00 AM, Mark Wendt wrote: > On Sun, Mar 2, 2014 at 7:31 AM, Bertho Stultiens <ber...@vagrearg.org>wrote: > >> On 03/02/2014 01:14 PM, Mark Wendt wrote: >>>> One can also use http://wiki.linuxcnc.org/cgi-bin/wiki.pl?Emcrsh or >>>> http://wiki.linuxcnc.org/cgi-bin/wiki.pl?Halrmt for remote controlling. >>>> It's an easy thing to use telnet socket in and Android app. >>> Telnet is extremely unsecure, with no encryption. In fact, at work, we >>> have to disable all telnet services. ssh is much more secure, with both >>> the username/password transaction and the the data flow being encrypted. >> Unfortunately, there is no way to specify for LinuxCNC only to bind to >> localhost (127.0.0.1) for the remote services as they are apparently >> hardcoded to listen on any address. >> >> However, instead of disabling the service you could simply block outside >> access with a machine internal iptables rule and use ssh forwarding to >> tunnel the request. >> >> >> -- >> Greetings Bertho >> > > Bertho, > > That's almost correct. You can use tcp wrappers to deny services to > certain machines or networks, or allow services to only a certain few. > However, we disable the telnet service on all our machines since everything > that passes between the machines is clear text. With ssh everything is > encrypted. > Mark > ------------------------------------------------------------------------------ > Flow-based real-time traffic analytics software. Cisco certified tool. > Monitor traffic, SLAs, QoS, Medianet, WAAS etc. with NetFlow Analyzer > Customize your own dashboards, set traffic alerts and generate reports. > Network behavioral analysis & security monitoring. All-in-one tool. > http://pubads.g.doubleclick.net/gampad/clk?id=126839071&iu=/4140/ostg.clktrk > _______________________________________________ > Emc-users mailing list > Emc-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/emc-users ------------------------------------------------------------------------------ Flow-based real-time traffic analytics software. Cisco certified tool. Monitor traffic, SLAs, QoS, Medianet, WAAS etc. with NetFlow Analyzer Customize your own dashboards, set traffic alerts and generate reports. Network behavioral analysis & security monitoring. All-in-one tool. http://pubads.g.doubleclick.net/gampad/clk?id=126839071&iu=/4140/ostg.clktrk _______________________________________________ Emc-users mailing list Emc-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/emc-users
