On Tue, 8 Nov 2005, John Horne wrote:
>
> On Tue, November 8, 2005 13:17, Joe Auerbach wrote:
> > You're saying that once they are logged ino the ltsp machine
> > they can then initiate a tenet connection to that machine via
> > the ltsp login (effectively telnetting to their own ip address
> > and using their own login and password) to shut down the
> > machine?
> >
> No. Anyone can telnet to an LTSP client and shutdown the machine or reboot
> it. That is my point - it's a security issue. From my work PC - which has
> nothing to do with LTSP - I shutdown several LTSP clients at our site
> simply by telnetting to their IP adress and issuing the relevant ltspinfo
> command. Having said that, it is required that the 'ALLOW_SHUTDOWN'
> variable is set in the lts.conf file, but we want that because we want our
> LTSP server to shutdown the clients. However, doing this means that anyone
> can shut them down, not just the server.
So, you want each user to be able to shutdown their own workstations,
and you don't want people to shutdown other workstations.
Seems like a fair request. This is an open source project. Anybody
care to step up and add authentication to ltspinfod?
If anyone is interested, I suggest checking out what Scott Balneaves did
in ltspfsd, using Xauth to authenticate the user. It's pretty slick.
Jim McQuillan
[EMAIL PROTECTED]
-------------------------------------------------------
SF.Net email is sponsored by:
Tame your development challenges with Apache's Geronimo App Server. Download
it for free - -and be entered to win a 42" plasma tv or your very own
Sony(tm)PSP. Click here to play: http://sourceforge.net/geronimo.php
_____________________________________________________________________
Ltsp-discuss mailing list. To un-subscribe, or change prefs, goto:
https://lists.sourceforge.net/lists/listinfo/ltsp-discuss
For additional LTSP help, try #ltsp channel on irc.freenode.net
