On Wed, 10 Sep 2003 09:59, Rik Tindall wrote: > Carl Cerecke wrote: > > I have a couple of passwordless accounts on my machine at home for my > > wife and kids. For the kids (6 and 4), simply typing their username > > "kids" takes some time and is error-prone, let alone typing a password > > that they cannot see. > > > > Is there a way that I can restrict logins of these two usernames to > > the display manager only (gdm for RH9)? Or, perhaps, not allow ssh > > logins unless from localhost? (I hope I haven't got telnetd running). > > I'm only on dial-up, and the IP changes with each connection, but it > > is not terribly difficult to get in if you know how. > > > > I have to get it sorted now - especially when this message hits the > > archives and gets googled :-) > > > > Any ideas? The program which handles the login is /bin/login You can change it however you need. Knoppix as an example.
> Or should I teach them about passwords? Without doubt. 4 & 6 year olds should know how to write their names, or at least their nicknames. Passwords an be made simple straight key sequences such as bhu8 etc. Doing that when they used their Enigma ciphers lost the Germans the last war, but what the heck. The 6 year old can help the 4 year old. > For a start, (install &) run $ nmap .i.p.address. to see what ports are > actually open, then shut down any dangerous daemons using System > Settings - Server Settings - Services (or a CLI alternative). netstat -a is the command to list out all active sockets. ntop is _the_ network monitoring program. -- Sincerely etc., Christopher Sawtell
