Skip site navigation (1)Skip section navigation (2) 
Date:      Fri, 22 Mar 2002 01:47:00 -0500
From:      "Peter C. Lai" <sirmoo@cowbert.2y.net>
To:        Steven Goodwin <steve@cit.gu.edu.au>
Cc:        security@FreeBSD.ORG
Subject:   Re: Safe SSH logins from public, untrusted Windows computers
Message-ID:  <20020322014700.A21504@cowbert.2y.net>
In-Reply-To: <Pine.GSO.3.96.1020322141921.29070I-100000@kurango.cit.gu.edu.au>; from steve@cit.gu.edu.au on Fri, Mar 22, 2002 at 02:21:02PM %2B1000
References:  <Pine.GSO.3.96.1020322140057.29070G-100000@kurango.cit.gu.edu.au> <Pine.GSO.3.96.1020322141921.29070I-100000@kurango.cit.gu.edu.au>
next in thread | previous in thread | raw e-mail | index | archive | help 
Then use sudo which requires someone to know your user account's password.

On Fri, Mar 22, 2002 at 02:21:02PM +1000, Steven Goodwin wrote:
> > Without wanting to prolong the wacky ideas thread too much further, how
> > about using the screen port (/usr/ports/misc/screen).  Logged on at a
> > secure terminal, you could start a screen session, su to root, then detach
> > (ctrl+a+d).  When you are on travels, simply log in (using a particular
> > method described on this thread) to your remote machine as the user that
> > owns the screen session, re-attach the session (screen -r) and
> > viola, root access without passwords.  Simple, but useless if the remote
> > machine has been rebooted while you were away.  Wacky.
> > 
> > Steve 
> 
> Oh yeah, you might also have an issue with leaving a root terminal
> available to those that comprimise your user account.  Ouch.
> 
> Steve
> 
> 
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-security" in the body of the message

-- 
Peter C. Lai
University of Connecticut
Dept. of Residential Life | Programmer
Dept. of Molecular and Cell Biology | Undergraduate Research Assistant
http://cowbert.2y.net/
860.427.4542 (Room)
860.486.1899 (Lab)
203.206.3784 (Cellphone)

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020322014700.A21504>