[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: Weird Security Idea (Or: how to access your RH server from cybercafes or 'Doze using friends' computers)

From: Alejandro González Hernández - Imoq <imoq imoqland com>
To: seawolf-list redhat com
Subject: Re: Weird Security Idea (Or: how to access your RH server from cybercafes or 'Doze using friends' computers)
Date: Sun, 17 Jun 2001 02:33:31 -0400

Micah Yoder wrote:
> 
> Anyone have this problem?  You have a Linux server, rightfully turn off
> telnet and only enable SSH, and then want/need to get to it from somewhere
> where there's no Linux box in sight?  I will have this problem later.
> 
> I know there are SSH programs for Windows, including an OpenSSH port.  But
> the problem is you can't just go around installing software on every 'Doze
> system you set your hands on, because @!% !#% Windows makes it a mess to
> uninstall.  Maybe if someone could make an OpenSSH CD where you could just
> run the whole system off the CD without installing anything or adding
> registry entries ...
> 
> But the weird idea is this:
> 
> Take something like Telnet and put it on a non-standard port (perhaps a high
> port and a process owned by your user ID, not root).  Instead of logging in
> with a username/password, make the server send a number, say 4 or 5 digits,
> when you telnet there.  Then have a formula that only you know, but that can
> be easily computed with a pocket calculator.  Such as, take the number the
> server gives you, divide by 4, add the last byte of your IP address, and
> multiply by (hour of day 0-23 + 2).  The server would expect you to enter the
> resultant number at a prompt.  And you only get maybe 3 tries before it
> blocks your IP (or subnet) for 15 minutes or so.  If you get the number right
> you get a shell.
> 
> Of course that formula would have to be different for everyone.  Would it be
> totally insane or am I on to something here?  Of course the best solution
> will be when the masses conver to Linux and everyone has OpenSSH by default.
>:-)
> 
> Thanks,
> Micah

You could go ahead and complicate ad infinitum your life with all that,
or just download PuTTY, put it on a floppy (or a CD, if you want to) and
live happy everafter ;). It doesn't requiere any installation, just run
it!

http://www.chiark.greenend.org.uk/~sgtatham/putty/

Hope that helps you ;)

Alex.

References:
- Weird Security Idea (Or: how to access your RH server from cybercafes or 'Doze using friends' computers)
  - From: Micah Yoder

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]