I have a couple of passwordless accounts on my machine at home for my wife and kids. For the kids (6 and 4), simply typing their username "kids" takes some time and is error-prone, let alone typing a password that they cannot see.
Is there a way that I can restrict logins of these two usernames to the display manager only (gdm for RH9)? Or, perhaps, not allow ssh logins unless from localhost? (I hope I haven't got telnetd running). I'm only on dial-up, and the IP changes with each connection, but it is not terribly difficult to get in if you know how.
I have to get it sorted now - especially when this message hits the archives and gets googled :-)
Any ideas? Or should I teach them about passwords?
Cheers,
Carl.
Hi Carl,
For a start, (install &) run $ nmap .i.p.address. to see what ports are actually open, then shut down any dangerous daemons using System Settings - Server Settings - Services (or a CLI alternative). I'm feeling safe with my RH9 run carefully thus - only 2 TCP ports are live. Run the Servers only as & when u need them.
Cheers
~ Rik
