TIP: Stop using telnet

faq
search
add article
cool-stuff
how-to
main
tips

TIP: Stop using telnet

Posted by Jason on Friday October 12, @11:42AM
from the stop-telnetd-service dept.
I am sure that by now most users are aware of the dangers of using a remote connection which uses clear text passwords over the internet (e.g. telnet).

Did you know that prior to FreeBSD-4.4-RELEASE the telnetd daemon had a bug which potentially granted root access to remote users via a buffer overflow exploit?

If you have a version of the OS prior to July 2001, you should secure it by disabling telnetd. It's a very simple security measure.

All you have to do is edit /etc/inetd.conf and comment out the line that starts telnetd.

Login: root
Password: ******

# cd /etc
# ee rc.conf

Change:
telnet stream tcp nowait root /usr/libexec/telnetd telnetd

To:
# telnet stream tcp nowait root /usr/libexec/telnetd telnetd

Restart your host and telnetd wil no longer be running. You can also just restart inetd like so:

killall -hup inetd

If you wish to login to your FreeBSD host remotely, use a secure connection like ssh. To learn more, read the man pages.

man inetd
man inetd.conf
man ssh
man scp

< | >

Related Links

Articles on Software BUG Reports
Also by Jason
Contact author

If you have ever wanted to learn about Cisco Routers, check out my new book "Cisco Routers for the Small Business" - it's Cisco CLI for the Regular Guy!

Sponsors

The Fine Print: The following comments are owned by whoever posted them.
( Add a Reply )

"You never know how many friends you have until you own a Condo on the beach." -- Jason's Postulate

[ main | post article | search ]