On Mon, Mar 19, 2001 at 08:58:06AM -0300, Pedro Zorzenon Neto wrote: > I'd like anyone to be able to use the local keyboard of some machines to > telnet/ssh to any other machine and use their account on the other machine. > > A simple solution would be create one acount for user "anyone" without > password and restrict its login with rbash to use just telnet/ssh. Also > disallow ftp for user "anyone". > Do you think this is a good solution? Does it opens some security hole?
You'll have to tie down the telnet options somehow; looking at telnet(1) it has options for logging data etc (I'm thinking of one user enabling logging to capture other users' passwords). -- Colin Phipps http://www.netcraft.com/
