 |
 |
|
|
|
07-21-2008, 12:31 PM
|
|||
|
|||
|
Telnet limit
Hi,
Bit of a conundrum on telnet to OpenSUSE (Have discussed security aspect but user group insistent on using telnet). Once they get to 31 logins using telnet, they can do no more. Any ideas how to increase this limit? pty limit is 4096, so that's not it. Thanks in advance, Chaz. 
|
|
07-21-2008, 12:53 PM
|
|||
|
|||
|
Re: Telnet limit
Chaz wrote:
> > > Hi, > > Bit of a conundrum on telnet to OpenSUSE (Have discussed security > aspect but user group insistent on using telnet). > > Once they get to 31 logins using telnet, they can do no more. > > Any ideas how to increase this limit? > > pty limit is 4096, so that's not it. > > Thanks in advance, Do you let us know when you get an answer form linux.ittoolbox.com? Also read `man telnetd` esecialy the part about debugging. houghi -- We all came out to Montreux Frank Zappa and the Mothers On the Lake Geneva shoreline Were at the best place around To make records with a mobile But some stupid with a flare gun We didn't have much time Burned the place to the ground
|
|
07-21-2008, 01:18 PM
|
|||
|
|||
|
Re: Telnet limit
Chaz <chaz@ten-25.co.uk> wrote:
>Bit of a conundrum on telnet to OpenSUSE (Have discussed security >aspect but user group insistent on using telnet). First, tell the users that there's a licence fee payable to the patent holder. Inform them that it's UKP 12.55+VAT per connection plus the cost of liability insurance. :-) When you've collected the down-payment for your next car, change the "instances" in either the xinetd.conf or the telnet detail file in xinetd.d directory. Note that you can restrict telnet services to those who've paid to use them, based on IP address. See xinetd.conf(5) Don't install telnetd when you next upgrade. -- /"\ Bernd Felsche - Innovative Reckoning, Perth, Western Australia \ / ASCII ribbon campaign | Science is the belief in X against HTML mail | the ignorance of the experts. / \ and postings | -- Richard Feynman
|
|
07-21-2008, 01:31 PM
|
|||
|
|||
|
Re: Telnet limit
Le Mon, 21 Jul 2008 14:31:40 +0200, Chaz <chaz@ten-25.co.uk> a écrit:
> Hi, > > Bit of a conundrum on telnet to OpenSUSE (Have discussed security > aspect but user group insistent on using telnet). > > Once they get to 31 logins using telnet, they can do no more. > > Any ideas how to increase this limit? > > pty limit is 4096, so that's not it. > > Thanks in advance, > > Chaz. number of pts's in /etc/securetty ? -- JB
|
|
07-21-2008, 01:47 PM
|
|||
|
|||
|
Re: Telnet limit
Bernd Felsche wrote:
> Chaz <chaz@ten-25.co.uk> wrote: > >>Bit of a conundrum on telnet to OpenSUSE (Have discussed security >>aspect but user group insistent on using telnet). > > First, tell the users that there's a licence fee payable to the > patent holder. Inform them that it's UKP 12.55+VAT per connection > plus the cost of liability insurance. :-) Hehe. I have no idea what type of users these are. Where work, we also use telnet to one of our servers. Not that easy to replacy company wide. If I had users I would 'force' them to use ssh as well. (Depends on what exactly needs to be done) Then point them to e.g. putty. You can also tell them to be able to use telnet, they must start using S/Key http://en.wikipedia.org/wiki/S/Key Also when they enter, they must type another message. e.g. "I am an idiot for using telnet" and let them type randomly Y and N several times, where at least one question is that they will give up their doughters once they reach legal age. houghi -- We all came out to Montreux Frank Zappa and the Mothers On the Lake Geneva shoreline Were at the best place around To make records with a mobile But some stupid with a flare gun We didn't have much time Burned the place to the ground
|
|
07-21-2008, 06:02 PM
|
|||
|
|||
|
Re: Telnet limit
On 2008-07-21, houghi <houghi@houghi.org.invalid> wrote:
>>>Bit of a conundrum on telnet to OpenSUSE (Have discussed security >>>aspect but user group insistent on using telnet). >> >> First, tell the users that there's a licence fee payable to the >> patent holder. Inform them that it's UKP 12.55+VAT per connection >> plus the cost of liability insurance. :-) > > Hehe. I have no idea what type of users these are. Where work, we also > use telnet to one of our servers. Not that easy to replacy company wide. > > If I had users I would 'force' them to use ssh as well. (Depends on what > exactly needs to be done) Then point them to e.g. putty. If a company is large enough, it might have one of of those 'Security Officers' (anal retentive dust collector units) sitting in some office, usually wasting usefull people's time. Put those to some good use, for once. Tell your users they can have telnet, if the Security Officer issues an individual written permission for it. They usually don't put their asses on the line. -- The sand remembers once there was beach and sunshine but chip is warm too -- haiku from Effector Online, Volume 1, Number 6
|
|
07-21-2008, 06:42 PM
|
|||
|
|||
|
Re: Telnet limit
Rikishi 42 wrote:
> Tell your users they can have telnet, if the Security Officer issues an > individual written permission for it. They usually don't put their asses on > the line. All depends on what 'users' they are. Are they users as in customers or 'users' as in the CEO of the company where you work. I work in a larger company and we as hell don't ave a security officer. :-D houghi -- This was written under the influence of the following: | Artist : Doe Maar | Song : Sinds 1 dag of 2 | Album : Skunk
|
|
07-21-2008, 09:27 PM
|
|||
|
|||
|
Re: Telnet limit
On 2008-07-21, houghi <houghi@houghi.org.invalid> wrote:
>> Tell your users they can have telnet, if the Security Officer issues an >> individual written permission for it. They usually don't put their asses on >> the line. > > All depends on what 'users' they are. Are they users as in customers or > 'users' as in the CEO of the company where you work. They are all users. The status of CEO may have it's importance in other fields. But a user is a user. And CEO's are often stereotypical ones. Those I deal with give their password to their secretairies, for $DEITY's sake. > I work in a larger company and we as hell don't ave a security officer. >:-D I do. My nickname for him is "Wagon de voie de garage". If you get my drift... -- The sand remembers once there was beach and sunshine but chip is warm too -- haiku from Effector Online, Volume 1, Number 6
|
|
07-21-2008, 10:51 PM
|
|||
|
|||
|
Re: Telnet limit
Rikishi 42 wrote:
> On 2008-07-21, houghi <houghi@houghi.org.invalid> wrote: > >>> Tell your users they can have telnet, if the Security Officer issues an >>> individual written permission for it. They usually don't put their asses on >>> the line. >> >> All depends on what 'users' they are. Are they users as in customers or >> 'users' as in the CEO of the company where you work. > > They are all users. The status of CEO may have it's importance in other > fields. But a user is a user. And CEO's are often stereotypical ones. Those > I deal with give their password to their secretairies, for $DEITY's sake. I am aware that they are all users. There is however a difference in the reason as to why you can not cut them off telnet. houghi -- This was written under the influence of the following: | Artist : Doe Maar | Song : Radeloos | Album : Hees van Ahoy CD 1
|
 |
|
| Thread Tools | Search this Thread |
| Display Modes | |
|
|
Linear Mode
