Experimental Physics and Industrial Control System
"Porter, Rodney" wrote:
>
> Following up on your security talk at APS, I was wondering if there is a
> standard way to disable telnet and rlogin. If not could one be made?
Probably the simplest way is to add the following two lines to your
startup script:
td tTelnetd
td tRlogind
On my mv167 this frees up about 21k of RAM from the two task stacks which
loginUserDelete doesn't do, and I guess it will also be marginally more
secure.
> These functions are not currently defined independently (as INCLUDE_RLOGIN
> and INCLUDE_TELNET), but are included with the definition
> INCLUDE_CONFIGURATION_5_2 in target/config/all/configAll.h, which is
> expanded in target/src/config/usrDepend.c.
You could replace that INCLUDE_CONFIGURATION_5_2 with the individual
expansions in your configAll.h if you want to change this and save even
more space by not loading the rlogind & telnetd code at all. I may do
this for the Tornado 2.0 BSPs, although the old method still works in that
version.
- Andrew
--
Complexity comes for free, Simplicity you have to work for.
- Replies:
- Re: disabling telnet and rlogin Steve Lewis
- References:
- disabling telnet and rlogin Porter, Rodney
- Navigate by Date:
- Prev:
disabling telnet and rlogin Porter, Rodney
- Next:
Re: disabling telnet and rlogin Steve Lewis
- Index:
1994
1995
1996
1997
1998
1999
<2000>
2001
2002
2003
2004
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
2021
2022
2023
2024
- Navigate by Thread:
- Prev:
disabling telnet and rlogin Porter, Rodney
- Next:
Re: disabling telnet and rlogin Steve Lewis
- Index:
1994
1995
1996
1997
1998
1999
<2000>
2001
2002
2003
2004
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
2021
2022
2023
2024