www.a00.de > tcpgroup > 1991 > msg00184
 

TCP-group 1991


[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

security



Hi all,
There are a number of measures we take locally to limit the damage
that an ax.25 spoofer can cause

1. All "callsign" users have only read/write access to the local
node.
2. All users who have any greater access (including the sysop) have
usernames greater than 6 characters. This means the username cannot
be put in an ax.25 callsign field, and therefore all such users must
use telnet to get into the bbs; with its associated password
checking.
3. All users who have the access as stated in (2) have their
"callsign" only entries set with 128 permission in ftpusers, thus
preventing spoofing.

This seems to work for us.
73 Gareth





Document URL : http://www.a00.de/tcpgroup/1991/msg00184.php
Ralf D. Kloth, Ludwigsburg, DE (QRQ.software). < hostmaster at a00.de > [don't send spam]
Created 2004-12-21. Last modified 2004-12-21. Your visit 2020-10-30 17:09.16. Page created in 0.0378 sec.
 
[Go to the top of this page]   [... to the index page]