From: "J. Lance Cotton" <joe@lightningflash.net>
To: linux-hams@vger.kernel.org
Subject: axspawn and security on the air
Date: Wed, 28 May 2003 09:38:18 -0500 [thread overview]
Message-ID: <3ED4C9DA.6070108@lightningflash.net> (raw)
Hi,
I am working on setting up an digi-ned based APRS digipeater and I want to
have ax25d listen for a very restricted set of connections for remote
administering of the digipeater.
I plan on restricting connections to local-only (no digi-hops) connections
from authorized admin callsigns. Based on what I read in the AX.25 HOWTO, I
should use an axspawn command to open up a shell once the connection is made.
The background to my question is this: If I leave the password for an admin
user blank, some rogue user could easily change their TNC to use an admin
callsign and wreak havoc. If I require a password for user login, the password
is transmitted plaintext, right? Same situation as before.
This machine will hopefully, eventually be connected to the Internet, where
ssh connections are more bandwidth-appropriate, but I want to have the ability
to remote administer this computer over the air with minimal possibility for
abuse.
Is insecurity of this type just a given with regard to wireless amateur
connections?
-Lance
--
J. Lance Cotton, KJ5O
http://map.findu.com/kj5o-14
joe@lightningflash.net
next reply other threads:[~2003-05-28 14:38 UTC|newest]
Thread overview: 10+ messages / expand[flat|nested] mbox.gz Atom feed top
2003-05-28 14:38 J. Lance Cotton [this message]
2003-05-28 15:01 ` axspawn and security on the air Tim Neu
2003-05-28 15:09 ` J. Lance Cotton
2003-05-28 15:15 ` Tim Neu
2003-05-28 15:19 ` J. Lance Cotton
2003-05-28 16:00 ` M Taylor
2003-05-28 16:01 ` Thomas Osterried
2003-05-28 22:24 ` Ken Koster
2003-05-28 22:49 ` Steve Fraser
2003-06-04 18:46 ` Again TNOS Marco iw7eas
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=3ED4C9DA.6070108@lightningflash.net \
--to=joe@lightningflash.net \
--cc=linux-hams@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox