[1846] in SIPB_Linux_Development
Re: suggestion for /etc/athena/inetd.conf
daemon@ATHENA.MIT.EDU (James Robertson)
Mon Oct 6 02:48:00 1997
To: Edwin Foo <efoo@MIT.EDU>
Cc: Erik Nygren <nygren@MIT.EDU>, "Kevin 'Bob' Fu" <fubob@MIT.EDU>,
linux-dev@MIT.EDU, net-defense@MIT.EDU
In-Reply-To: Your message of "Mon, 06 Oct 1997 02:14:52 EDT."
<3.0.3.32.19971006021452.0072f19c@hesed.mit.edu>
Date: Mon, 06 Oct 1997 02:47:40 EDT
From: James Robertson <jsrobert@MIT.EDU>
In message <3.0.3.32.19971006021452.0072f19c@hesed.mit.edu>, efoo@mit.edu write
s:
>If there is ssh for Windows, that would be nice, but so far I have only
>been able to find a commercial implementation that costs money. Granted, we
>have kerberized telnet for Windows, so I guess we don't really need ssh for
>Windows, but for MIT students who telnet back onto campus from off-site
>(people on 6A assignment, for example, or summertime), it is next to
>impossible to get HostExplorer because the MIT server limits it to 18.*. If
>anyone knows how to get ssh for windows, please post here.
I looked in the ssh-faq:
http://www.uni-karlsruhe.de/~ig25/ssh-faq/
and found:
ftp://hotline.pvt.net/pub/win_utils/winsock/ssh/
which claims to be a free beta of ssh for windows.
The documentation doesn't look very good, though.
>I am currently working on getting the TripWire system to run on my own
>machine -- this basically is a system for detecting unauthorized changes to
>system files through use of hashes and the like.
If something like Tripwire were easily available to Linux-Athena
sysadmins, it would be nice to have the hashes (or logs or however it
records the file changes) for the Linux-Athena system files available
in some AFS locker. Maybe even the binaries should be in a
locker. This would improve the sysadmin's confidence that the Tripwire
logs or binaries hadn't been changed by some system cracker. However,
making Tripwire available would discourage sysadmins from completely
reinstalling after a breakin, and this could be considered a bad thing
since backdoors may still exist. Is this line of thinking too
paranoid?
James
