|
If no
one will acknowledge putting in that .rhosts entry, you must assume that your
machine has been compromised and that all of your tokens are probably
compromised. Format the disks and install from installation tapes.
Assume that anything on backups is contaminated. Start a plan to replace
all the tokens in the field.
Telnet
services still risk exposing the root password if you come in as root or su to
root. A better way is to use ssh to encrypt the data
stream.
-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Sunday, January 07, 2001 8:24 PM To: [EMAIL PROTECTED] Subject: [question] ACE/SERVER and security I'm operating ACE/SERVER.
ACE/server is configured master and
slave.
I have some question about security.
1. I found something in .rhosts file like
that.
#cat .rhosts
++
Do they use r-command when master
and slave communicate each other?
If not, is there any problem whithout .rhosts
file?
I want to delete .rhosts file because it is very
vulnarable in securtiy.
2. I want to comment all services except for telnet
service.
The inetd.conf file allows services.
If I open only telnet service, is there any problem
in ACE/SERVER?
Please reply to me a.s.a.p.
Happy new year !!
|
- [question] ACE/SERVER and secur... Sun Young Geun\(선영근\)
- Re: [question] ACE/SERVER ... gilles
- RE: [question] ACE/SERVER ... Ng, Kenneth \(US\)
- RE: [question] ACE/SERVER ... McEwen, Don \(NCI\)
- RE: [question] ACE/SERVER ... Ng, Kenneth \(US\)
