this:
AllowUsers [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL
PROTECTED] [EMAIL PROTECTED]
It looks like AllowHosts is not available with the version of SSH that comes
with FreeBSD.
This works:
AllowUsers [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL
PROTECT
At 18:17 18/04/2008 -0500, Paul Schmehl wrote:
If you want to restrict sshd logins by host, you can use AllowUsers like this:
AllowUsers [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL
PROTECTED] [EMAIL PROTECTED]
It looks like AllowHosts is not available with the version of SSH
On Fri, 18 Apr 2008 13:46:48 -0500
Paul Schmehl <[EMAIL PROTECTED]> wrote:
> Let me clarify. When I use the term "host", I'm referring to what
> many would call a "personal workstation" or "personal computer". If
> you have more than one person
--On Saturday, April 19, 2008 00:12:41 +0200 Gilles <[EMAIL PROTECTED]>
wrote:
On Fri, 18 Apr 2008 10:04:37 +0100, FreeBSD - Wire Consulting
<[EMAIL PROTECTED]> wrote:
(snip)
Seems like I didn't do it right:
/etc/ssh/sshd_config:
[...]
AllowHosts 192.168.0 82.227.x.x
# /etc/rc.d/sshd restart
On Fri, 18 Apr 2008 10:04:37 +0100, FreeBSD - Wire Consulting
<[EMAIL PROTECTED]> wrote:
(snip)
Seems like I didn't do it right:
/etc/ssh/sshd_config:
[...]
AllowHosts 192.168.0 82.227.x.x
# /etc/rc.d/sshd restart
Stopping sshd.
Starting sshd.
/etc/ssh/sshd_config: line 119: Bad configuration op
--On Friday, April 18, 2008 21:37:45 +0200 Mel
<[EMAIL PROTECTED]> wrote:
>> [4] # grep sshd /etc/defaults/rc.conf
>> sshd_enable="NO"# Enable sshd
>
> No? Surely you're not using inetd?
I haven't used inetd in years. I'm not sure why you think I would be.
Well, since sshd_en
On Friday 18 April 2008 20:53:37 Paul Schmehl wrote:
> --On Friday, April 18, 2008 20:30:53 +0200 Mel
>
> <[EMAIL PROTECTED]> wrote:
> > On Friday 18 April 2008 16:53:49 Paul Schmehl wrote:
> >> Firewalls are for preventing access to running services. By definit
ny,
using BGP to give access to our T1 and frac DS3. That's all it should
be doing, it will have no other services. It'll be in our server room,
though, so I won't have to get at it from anywhere, except perhaps
home, and even that could be avoided by simply traveling the 10 miles
to
--On Friday, April 18, 2008 20:30:53 +0200 Mel
<[EMAIL PROTECTED]> wrote:
On Friday 18 April 2008 16:53:49 Paul Schmehl wrote:
Firewalls are for preventing access to running services. By definition, if
you are running a service, you want it to be accessed.
That's your assumptio
almost ten years now. Initially, I bought in to this logic and ran
a firewall. (At that time we only had one server.) What it cost me was
CPU and memory. What it gained me was nothing. I turned it off. I have
never run a firewall on a publicly available host since.
Firewalls are for preventing acc
On Friday 18 April 2008 16:53:49 Paul Schmehl wrote:
> I see this statement all the time, and I wonder why. What does a firewall
> on an individual host accomplish?
...
> Firewalls are for preventing access to running services. By definition, if
> you are running a service, you w
an
> a firewall. (At that time we only had one server.) What it cost me was
> CPU and memory. What it gained me was nothing. I turned it off. I have
> never run a firewall on a publicly available host since.
>
> Firewalls are for preventing access to running services. By defi
Hi,
Gilles wrote:
I don't have a firewall on that host because there's already a NAT
router connecting the LAN to the Net.
I don't know your setup, but I'm pretty sure you can run the packet
filter on your host anyway.
You don't need to configure NAT to run your host firewall.
I'll just ad
had one server.)
> >What it cost me was CPU and memory. What it gained me was nothing.
> >I turned it off. I have never run a firewall on a publicly
> >available host since.
> >
> >Firewalls are for preventing access to running services. By
> >definition, if y
On Fri, 18 Apr 2008 10:04:37 +0100, FreeBSD - Wire Consulting
<[EMAIL PROTECTED]> wrote:
>sshd(8) is part of the base system, which is a FreeBSD patched version of
>OpenSSH. Although, you can find some ports of bulk OpenSSH in
>/usr/ports/security.
I don't have a firewall on that host because ther
Kurt Buff wrote:
On Fri, Apr 18, 2008 at 8:59 AM, Matthew Seaman
<[EMAIL PROTECTED]> wrote:
At any rate, locking down ssh access is one of my concerns, for sure,
so this discussion is helpful.
Wouldn't turning off password based logins and using public and private
keys (wi
t that time we only had one server.) What it cost me was CPU
> and memory. What it gained me was nothing. I turned it off. I have never
> run a firewall on a publicly available host since.
> >
> > Firewalls are for preventing access to running services. By definition,
> if you a
off. I have
never run a firewall on a publicly available host since.
Firewalls are for preventing access to running services. By definition,
if you are running a service, you want it to be accessed. So firewalls
are self-defeating or completely useless at the host level **unless**
you
preventing access to running services. By definition, if you
are running a service, you want it to be accessed. So firewalls are
self-defeating or completely useless at the host level **unless** you don't
know what you're doing. For an enterprise they make a great deal of sense. N
to the lists, when your IP changes or you're on a location you didn't
> think you'd need access from.
> I personally prefer sshd to be world accessible and block scans, since I
> consider being locked out of the machines a security risk as well...
>
Some additional thoug
recommend?
You can limit the access using one of the packet filters available,
ipfw(8), ipf(8) or pf(4).
2. Although it's up and running, I can't find SSHd in the list of
installed apps:
sshd(8) is part of the base system, which is a FreeBSD patched version of
OpenSSH. Althoug
ou didn't
think you'd need access from.
I personally prefer sshd to be world accessible and block scans, since I
consider being locked out of the machines a security risk as well...
> 2. Although it's up and running, I can't find SSHd in the list of
> installed apps:
>
&
Hi Gilles,
ssh is part of the base system, not an installed port (by default anyway) so
you won't see it with pkg_info which will only list installed packages. The
config file is /etc/ssh/sshd_config.
To limit connections, you should be using the firewall. I do use hosts.allow
too, but the fi
Gilles wrote:
> Hello
>
> I have a couple of questions about running SSHd:
>
> 1. I'd like to limit connections from the Net only from specific IP's.
> It seems like there are several ways to do it (/etc/hosts.allow,
> AllowHosts/AllowUsers, TCP-wrapper, port-knocking, etc.). Which would
> you re
Hello
I have a couple of questions about running SSHd:
1. I'd like to limit connections from the Net only from specific IP's.
It seems like there are several ways to do it (/etc/hosts.allow,
AllowHosts/AllowUsers, TCP-wrapper, port-knocking, etc.). Which would
you recommend?
2. Although it's up
; Now I want to move all of my archived video tapes to harddisk/DVD. How
> can I perform this, that means how can I access my tape recorder, put
> the files onto HD and view it, meaning what kind of program is capable
> of doing so? Mplayer would be fine because I have it just instal
On Wednesday 16 April 2008 22:11:16 Roland Smith wrote:
> On Wed, Apr 16, 2008 at 08:28:30PM +0200, Frank Wißmann wrote:
> > Hi, folks!
> > I have bought for myself a taperecorder-to-usb-connector, which I wrote
> > in /etc/usbd.conf as following:
> > Device "Video tape"
> > Product "0x2821"
> > V
Neither the vendor nor the device are listed in
/usr/src/sys/dev/usb/usbdevs. That does not bode well.
> Now I want to move all of my archived video tapes to harddisk/DVD. How can
> I perform this, that means how can I access my tape recorder,
You'll need a device driver. Since the devi
Hi, folks!
I have bought for myself a taperecorder-to-usb-connector, which I wrote
in /etc/usbd.conf as following:
Device "Video tape"
Product "0x2821"
Vendor "0xeb1a"
Now I want to move all of my archived video tapes to harddisk/DVD. How
can I perform this,
My problem is aligning reads/writes properly on a 3 disk RAID-5 volume
with stripe size of 16384. Since my measurements all show the same
relatively low read/write performance on the volume matter which offset
i choose on the disklabel "partition" (i've tried with the granularity
of a single se
At 03:30 PM 4/6/2008, comperr wrote:
Hi, I am having trouble accessing the internet with my freeBSD 6.2
computer.
The router is a Lynksys router.
When I do a tcpdump I see a series of requests that have something
like pathcost 0 max 20 or something like that..
(sample: 8000.00:01:ff:f1:e9:93.800
Hi, I am having trouble accessing the internet with my freeBSD 6.2
computer.
The router is a Lynksys router.
When I do a tcpdump I see a series of requests that have something
like pathcost 0 max 20 or something like that..
(sample: 8000.00:01:ff:f1:e9:93.8004 root 8000.00:01:ff:f1:e9:93
pathcost
n Mon, 2008-03-31 at 07:34 +0200, Ashant Chalasani wrote:
> On Sun, Mar 30, 2008 at 6:37 PM, Martes G Wigglesworth
> <[EMAIL PROTECTED]> wrote:
> > I am running 6-Stable on an old Pentium III 800MHz box for routing and
> > wireless access point services. I am un
I am running 6-Stable on an old Pentium III 800MHz box for routing and
wireless access point services. I am unable to maintain a concurrent
conection with the wireless link. The system seems to run fine without
authentication, however, when using hostapd I get the following error
message on std
Benjamin Cance wrote:
> Sam Fourman Jr. wrote:
>> hello,
>>
>> I am Running FreeBSD 7.0, I am trying to gain console access to my
>> Extreme Networks Switch, the command cu -l /dev/cuad0 -s 9600 , Says
>> Connected and then does nothing What am I doing Wr
Sam Fourman Jr. wrote:
hello,
I am Running FreeBSD 7.0, I am trying to gain console access to my
Extreme Networks Switch, the command cu -l /dev/cuad0 -s 9600 , Says
Connected and then does nothing What am I doing Wrong?
I have a Straight through serial cable connected to com1, Does
hello,
I am Running FreeBSD 7.0, I am trying to gain console access to my
Extreme Networks Switch, the command cu -l /dev/cuad0 -s 9600 , Says
Connected and then does nothing What am I doing Wrong?
I have a Straight through serial cable connected to com1, Does someone
know a quick way to do
On Wednesday 05 March 2008 23:14:36 Ross Penner wrote:
> I currently have a FreeBSD machine that acts as a router and
> fileserver for my local home network. I'm hoping to set up a wireless
> access point so I don't have to steal my neighbour's wireless. The PC
> I'
Hi list,
I currently have a FreeBSD machine that acts as a router and
fileserver for my local home network. I'm hoping to set up a wireless
access point so I don't have to steal my neighbour's wireless. The PC
I'm using for FreeBSD has no free PCI slots so I'm forced t
Potocki, Mariusz wrote:
ps.
Two radiomodems are "invisible" and act as a vry lng null-modem cable.
Windows treats NULL-modem connection as special case of dial-up, when
each side has some specific chat script. AFAIR it is something like
'CLIENT CLIENTSERVER'. Google should help you.
Any hint what relevant should be in rc.conf and ppp.conf?
see /usr/share/examples/ppp/ppp.conf.sample and direct-server:
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any
: freebsd-questions@freebsd.org
Subject: Re: Inet access via serial interface
> FreeBSD is permanently connected to Internet (ethernet link to adsl modem).
> To serial port I have connected one radiomodem and few miles away second
> radiomodem is connected to windows box.
> This windows box
FreeBSD is permanently connected to Internet (ethernet link to adsl modem).
To serial port I have connected one radiomodem and few miles away second
radiomodem is connected to windows box.
This windows box should have access to Internet.
I successfully installed 6.3release and I have Inet
ort I have connected one radiomodem and few miles away second
radiomodem is connected to windows box.
This windows box should have access to Internet.
I successfully installed 6.3release and I have Inet access on this box.
What next? Create bridge? ppp -direct? some specialized port/package?
Any idea???
On Sat, 09 Feb 2008 14:55:27 +, Bruce Cran wrote
> Martin Solar wrote:
> >> I have problem access your web www.freebsd.org <http://www.freebsd.org/>
> >> from
> >>
> >> couple of my real & virtual computers (VMWARE + WIN XP)
> >
> >
Martin Solar wrote:
I have problem access your web www.freebsd.org <http://www.freebsd.org/>
from
couple of my real & virtual computers (VMWARE + WIN XP)
I have this problem only with Opera browser. Other browsers are working.
Which browser are you using ?
I think there might b
> I have problem access your web www.freebsd.org <http://www.freebsd.org/>
> from
>
> couple of my real & virtual computers (VMWARE + WIN XP)
I have this problem only with Opera browser. Other browsers are working.
Which
Hi,
I have problem access your web www.freebsd.org <http://www.freebsd.org/>
from
couple of my real & virtual computers (VMWARE + WIN XP)
while I have no problem to access from other computers.
>From every computer I can access www.freebsd.cz <http://www.freebsd.cz/>
w
ECTED]
because:
5.1.0 - Unknown address error 554-'5.7.1 <[EMAIL PROTECTED]>: Recipient
address rejected: Access denied' (delivery attempts: 0)
*--*
Kayven Riese, BSCS, MS (Physiology and Biophysics)
(415) 902 5513 cellul
ing multiple IMAP/POP accounts (OPTIONAL)
|
| If you happen to have accounts on multiple IMAP and/or POP
| servers, you may find managing all the authentication settings
| inconvenient and error-prone. The account-hook command may
| help. This hook works like folder-hook but is invoked whenever
| you
,--[ On Thu, Dec 27, 2007 at 07:18:19PM +0100, Pieter de Goeje wrote:
[...]
| > Is there anyway to access this information from FreeBSD also, hmm... ?
| >
| > TIA
|
| Have a look at the sysutils/mbmon and sysutils/healthd ports.
Thanks will look at them.
--
Ashish Shukla आ
On Thursday 27 December 2007, आशीष शुक्ल Ashish Shukla wrote:
> Hi,
>
> Is there anything similar to lm_sensors (for Linux) in FreeBSD, to
> monitor temperature of motherboard, CPU, etc. ?
[snip]
>
> Is there anyway to access this information from FreeBSD also, hmm... ?
>
>
gt;8>8
Is there anyway to access this information from FreeBSD also, hmm... ?
TIA
--
Ashish Shukla आशीष शुक्ल http://wahjava.wordpress.com/
·-- ·- ·--- ·- ···- ·- ·--·-· --· -- ·- ·· ·-·· ·-·-·- -·-· --- --
signature.asc
Description: Digital signature
If you used ugidfw to prevent temp access to only the range of uid's you
presently have, I'm thinking this should prevent an attacker from using
/tmp to get around permissions restrictions. The question is, is there any
kind of succint guide or list of what daemons need access to /tm
Tino Engel schrieb:
Dear all,
I am currently trying to get my mp3-player to work with freebsd.
FreeBSD freebsdangel.de 7.0-BETA3 FreeBSD 7.0-BETA3 #1: Sun Nov 18
15:40:16 CET 2007
[EMAIL PROTECTED]:/usr/obj/usr/src/sys/GENERIC i386
When attaching the device to an usb-port I receive an
Dear all,
I am currently trying to get my mp3-player to work with freebsd.
FreeBSD freebsdangel.de 7.0-BETA3 FreeBSD 7.0-BETA3 #1: Sun Nov 18
15:40:16 CET 2007 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/GENERIC
i386
When attaching the device to an usb-port I receive an error message as
fol
e problems of a firewall is to make the
> connection through a proxy, we managed to connect to your server.
I've no idea how that symptom would lead to that conclusion.
> Another problem that could consider is to have rules in our firewall
> bloquendo access to your pages, but
Rodrigo Moura Bittencourt <[EMAIL PROTECTED]> wrote:
>
> Dear Gentlemen,
>
> We INPE / CPTEC an institution of meteorology government of Brazil, we
> are having trouble accessing the servers of FreeBSD, we believe that
> your firewall is blocking our access.
While thi
Dear Gentlemen,
We INPE / CPTEC an institution of meteorology government of Brazil, we
are having trouble accessing the servers of FreeBSD, we believe that
your firewall is blocking our access.
Due to use its operating system in our computational park, blocking our
access is causing
[EMAIL PROTECTED] wrote:
Dear Sirs
I use FreeBSD-6.1-R amd64 and I installed cups. When I type in
"http://localhost:631"; I got the message "server not found".
Suggestions...
What does "cat /etc/rc.conf | grep cupsd && ps ux | grep cupsd" output?
-Garrett
___
___
Going from memory...
Check to see if cupsd is running:
#ps auxww| grep cupsd
if something other than 'grep cupsd' is listed, I don't know why you
can't access the site. If nothing comes back:
Start the cupsd daemon:
#/usr/local/etc/rc.d/cu
[EMAIL PROTECTED] writes:
>I use FreeBSD-6.1-R amd64 and I installed cups. When I type in
> "http://localhost:631"; I got the message "server not found".
> Suggestions...
Is cupsd running?
Does it own port 631?
Is port 631 blocked by a firewall?
Dear Sirs
I use FreeBSD-6.1-R amd64 and I installed cups. When I type in
"http://localhost:631"; I got the message "server not found".
Suggestions...
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/fr
Hi,
On Wednesday 10 October 2007, williamkow wrote:
> Could anybody advise me on how to enable internet access (GPRS/EDGE) in
> GSM network, using Nokia mobile phone (USB cable connect to computer).
> Please provide me the exact PORT name to install to FreeBSD 6.2 system,
> also plea
Could anybody advise me on how to enable internet access (GPRS/EDGE) in
GSM network, using Nokia mobile phone (USB cable connect to computer).
Please provide me the exact PORT name to install to FreeBSD 6.2 system,
also please assist me on how to use the ports, example, (1) execute it
(2
How does the log look,,Did they just attempt or got access to it...?
Thanks
Hakan
http://dominor.com
On 10/1/07, Walter <[EMAIL PROTECTED]> wrote:
>
> Hi again,
>
> I just by chance noticed today that someone was accessing
> my ftp server. No big deal, except that
Hi again,
I just by chance noticed today that someone was accessing
my ftp server. No big deal, except that I did not see any log
of it via "last" which usually shows these things. I could see
a record in /var/log/xferlog, however.
Did someone break in? Should I worry?
Thanks.
Walter
___
On Sun, 30 Sep 2007 02:22:42 +0200
Sten Daniel Soersdal <[EMAIL PROTECTED]> wrote:
> Agus wrote:
> > Hi guys,
> >
> > How are you today?
> > The question is this..I want to restrict external access, that is
> > from my BSD to the internet, to some grou
Agus wrote:
Hi guys,
How are you today?
The question is this..I want to restrict external access, that is from my
BSD to the internet, to some groups of users. Other groups i want to access
internet normally. I dont want this group of users to be able to establish
connections to the internet
On Sep 28, 2007, at 10:51 AM, Agus wrote:
The question is this..I want to restrict external access, that is
from my
BSD to the internet, to some groups of users. Other groups i want
to access
internet normally. I dont want this group of users to be able to
establish
connections to the
Hi guys,
How are you today?
The question is this..I want to restrict external access, that is from my
BSD to the internet, to some groups of users. Other groups i want to access
internet normally. I dont want this group of users to be able to establish
connections to the internet but yes to the
On Sep 26, 2007, at 1:27 PMSep 26, 2007, Walter wrote:
Hi,
I've placed some files on a FBSD 6.2 server using the
standard ftpd to access them. The content in question
is a video clip, but could be anything that I wanted to
share with people unknown.
I can access the file list with a br
Hi,
I've placed some files on a FBSD 6.2 server using the
standard ftpd to access them. The content in question
is a video clip, but could be anything that I wanted to
share with people unknown.
I can access the file list with a browser on my internal
network - I do this to check that my
part of me thinks they just want to stick it to their
> customers whom they view as pesky annoyances rather than valuable
> consumers. I circumvent these hassles by boring ssh tunnels to the
> services I need access to on my home machines. This is a stopgap until I
> get time to fiddle wit
me thinks they just
> want to stick it to their customers whom they view as pesky
> annoyances rather than valuable consumers. I circumvent these
> hassles by boring ssh tunnels to the services I need access to on
> my home machines. This is a stopgap until I get time to fiddle with
> o
hassles by boring ssh tunnels to the
services I need access to on my home machines. This is a stopgap until I
get time to fiddle with openvpn.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To
On Wednesday 12 September 2007, Don O'Neil said:
> I have a very strange access problem that just popped up this
> morning. For whatever reason, my machine at home over my cable
> modem can no longer access Apache on port 80... However other
> services are accessible elsewh
I have a very strange access problem that just popped up this morning. For
whatever reason, my machine at home over my cable modem can no longer access
Apache on port 80... However other services are accessible elsewhere (Direct
Admin control panel, FTP, SMTP,etc...) BUT Apache is accessible to
Sep 2007, Terrence Wilson wrote:
>
> > I have just installed free bsd and trying to access my dvdrom drive. I
> > issued the command: "mount /dev/acd0 /cdrom" but I got a message
> > stating "incorrect super block." What is t
mount_cd9660
On Mon, 3 Sep 2007, Terrence Wilson wrote:
I have just installed free bsd and trying to access my dvdrom drive. I
issued the command: "mount /dev/acd0 /cdrom" but I got a message
stating "incorrect super block." What is the correct method for
accessing the
Predrag Punosevac wrote:
Terrence Wilson wrote:
I have just installed free bsd and trying to access my dvdrom drive.
I issued the command: "mount /dev/acd0 /cdrom" but I got a message
stating "incorrect super block." What is the correct method for
accessing the
On 2007-09-03 19:51, Terrence Wilson <[EMAIL PROTECTED]> wrote:
> I have just installed free bsd and trying to access my dvdrom drive. I
> issued the command: "mount /dev/acd0 /cdrom" but I got a message
> stating "incorrect super block." What is the correct met
I have just installed free bsd and trying to access my dvdrom drive. I
issued the command: "mount /dev/acd0 /cdrom" but I got a message
stating "incorrect super block." What is the correct method for
accessing the files on my dvd rom.
___
[hxonlymainnopadding_v1.gif]
Dear customer,
Your access to Online Services has been suspended for following
reason:
.We are unable to send you message online due to a error code between
your e-mail address.
To enable you start receiving security e-mail alert when
Quoting gimp_user:
>
> I have made all repository paths owner:group www:www
Permissions for subversion have always gotten to me, too. The way I
usually get around my headaches is to chmod -R 777 the subversion root
directory. I have not found any fallbacks to a 777 setting, because you
are usi
le dav_module libexec/apache22/mod_dav.so
LoadModule dav_svn_module libexec/apache22/mod_dav_svn.so
LoadModule authz_svn_module libexec/apache22/mod_authz_svn.so
# Location entry:
DAV svn
SVNParentPath /usr2/svnhome
SVNListParentPath on
# Access control Policy
; > his behaviour. Of course your email box would fill up quickly.
> >
> > Adam J Richardson
> >
>
> Tom,
>
> If you're really all that worried about this, don't give them root
> access. You could simply sit at the console with them while th
ichardson
Tom,
If you're really all that worried about this, don't give them root
access. You could simply sit at the console with them while they work.
IIRC, they're a contractor, not an employee. Your presence during such
operations wouldn't be abnormal for a contra
x27;d
check the crontab immediately, unless he was really bent on the
system's destruction. Likely you'd have at least some evidence of
his behaviour. Of course your email box would fill up quickly.
Adam J Richardson
Tom,
If you're really all that worried about this, don'
Tom Evans wrote:
This seems great in principle, but of course, you just gave them a root
shell, and so they can delete their log file easily enough...
You could have cron email it to you every 5 minutes. Unlikely he'd check
the crontab immediately, unless he was really bent on the system's
de
On Tue, 2007-07-24 at 13:18 -0400, Ian Lord wrote:
> Hi,
>
>
>
> A Zend technician asked me to have a root access on one of my box to
> troubleshoot something wrong in Zend Platform installation that doesn't work
> on Freebsd.
>
>
>
> He will need root
> Exactly, I don't know what needs to be done, and they don't
> neither. That's why they need to browse around trying to
> figure out why their installer doesn't work.
>
> Sudo wouldn't be any help here cause I would need to pre
> approve commands and I don't know which one will be needed.
>
>
ED]
Sent: 24 juillet 2007 15:42
To: Tom Grove
Cc: freebsd-questions@freebsd.org; Ian Lord
Subject: Re: Root access loggin
I may be misunderstanding this, but wouldn't allowing only certain
commands with sudo assume that the user actually knows what commands
are needed by the user? In this situat
I accidentally sent my response directly to the OP, rather than to the
list. If he feels it's worthwhile to do so, I guess he can post it to
the list. In short, I just pointed out that setting up a logging server
that collects log events "invisibly" might be a good idea in a
circumstance like th
: Root access loggin
I may be misunderstanding this, but wouldn't allowing only certain
commands with sudo assume that the user actually knows what commands
are needed by the user? In this situation it seems like the whole
reason to grant access to the server was because the user _doesn't_
kn
I don't know, but why don't you work with screen?
You will be able to see live what he's doing.
--
Sven Braun
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EM
--On Tuesday, July 24, 2007 16:01:33 -0400 Ian Lord <[EMAIL PROTECTED]>
wrote:
-Original Message-
From: John Fitzgerald [mailto:[EMAIL PROTECTED]
Sent: 24 juillet 2007 15:42
To: Tom Grove
Cc: freebsd-questions@freebsd.org; Ian Lord
Subject: Re: Root access loggin
I
-Original Message-
From: John Fitzgerald [mailto:[EMAIL PROTECTED]
Sent: 24 juillet 2007 15:42
To: Tom Grove
Cc: freebsd-questions@freebsd.org; Ian Lord
Subject: Re: Root access loggin
I may be misunderstanding this, but wouldn't allowing only certain
commands with sudo assume tha
I may be misunderstanding this, but wouldn't allowing only certain
commands with sudo assume that the user actually knows what commands
are needed by the user? In this situation it seems like the whole
reason to grant access to the server was because the user _doesn't_
know what needs
Lowell Gilbert wrote:
Tom Grove <[EMAIL PROTECTED]> writes:
You could even go so far as to limit what he can use sudo on.
$>man sudo
Giving him full root access is probably not a good idea.
In practice, this approach *is* effectively giving him full root
access. Once yo
601 - 700 of 1560 matches
Mail list logo
