Date: Thu, 29 Nov 2007 12:14:34 +0100 (CET) From: Wojciech Puchar <wojtek@wojtek.tensor.gdynia.pl> To: Steve Bertrand <iaccounts@ibctech.ca> Cc: Olivier Nicole <on@cs.ait.ac.th>, freebsd-questions@freebsd.org Subject: Re: Secure remote shell Message-ID: <20071129121342.Y9040@wojtek.tensor.gdynia.pl> In-Reply-To: <474E4CE1.6060809@ibctech.ca> References: <200711290428.lAT4SOLd065598@banyan.cs.ait.ac.th> <474E4CE1.6060809@ibctech.ca>
next in thread | previous in thread | raw e-mail | index | archive | help
>> root, that could be automated in a script (no password required). > > - have information input into browser > - have web server save information to server disk in non-executable format > - have script (or admin) authenticate/authorize commands to be performed > (recommend doing this manually for a while to ensure you capture as many > escape type bugs as possible) > - have commands via another script scrubbed/cleaned/tested > - have cron perform commands at every X minutes the most secure compared to others. only few programs has to be checked for security this way. it's not dirty way i think
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20071129121342.Y9040>