a00.de

www.a00.de
 > tcpgroup
 > 1991
 > msg00184

TCP-group 1991

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

security

To: tcp-group@ucsd.edu
Subject: security
From: Gareth Howell <garethh@cix.compulink.co.uk>
Date: Wed, 6 Feb 91 19:16 GMT

Hi all,
There are a number of measures we take locally to limit the damage
that an ax.25 spoofer can cause

1. All "callsign" users have only read/write access to the local
node.
2. All users who have any greater access (including the sysop) have
usernames greater than 6 characters. This means the username cannot
be put in an ax.25 callsign field, and therefore all such users must
use telnet to get into the bbs; with its associated password
checking.
3. All users who have the access as stated in (2) have their
"callsign" only entries set with 128 permission in ftpusers, thus
preventing spoofing.

This seems to work for us.
73 Gareth

Prev by Date: Apple's FCC petition on thumper.bellcore.com
Next by Date: spread spectrum info
Previous by thread: security
Next by thread: budlist
Index(es):
- Date
- Thread

Document URL : http://www.a00.de/tcpgroup/1991/msg00184.php
Ralf D. Kloth, Ludwigsburg, DE (QRQ.software). < hostmaster at a00.de > [don't send spam]
Created 2004-12-21. Last modified 2004-12-21. Your visit 2024-11-24 01:54.26. Page created in 0.0176 sec.

[Go to the top of this page] [... to the index page]