Koozali.org: home of the SME Server

Legacy Forums => Experienced User Forum => Topic started by: Lindsay Steele on April 26, 2001, 06:04:17 AM

Title: Telnet Access
Post by: Lindsay Steele on April 26, 2001, 06:04:17 AM

I am having trouble getting telnet access to be available for users on the outside interface.  I have enabled it publically in the security section of e-smith manager.  When a user does log in, it allows a user to log in but when they do it comes up with a message "Standard user login services have been disabled".  Any ideas ???

I have e-smith 4.1 with the latest updates.

 Thanks,

  Lindsay Steele

Title: Re: Telnet Access
Post by: Peter Hollandare on April 26, 2001, 12:20:46 PM

Lindsay,

Never ever, let *anyone* (not even yourself) use telnet, its a big security risc. Instead tell them to use SSH.

Title: Re: Telnet Access
Post by: Lindsay Steele on April 26, 2001, 05:13:28 PM

Hi Peter,
              Thanks for your words of wisdom, not the point though.   Fortunately I am fully aware of the security limitations of Telnet and I connect to the system via SSH for administration.  The telnet access is actually for a reason, that is to get a business running they way they need to run and have been operating for a while.  I agree with you to a certain extent, we are encouraging the move over to SSH where possible.

  If you can direct me to a free SSH client that runs on Windows and does WY60 terminal emulation I would be very interested and might be able to wean the majority of users off telnet very quickly, for now though telnet is the way a business has been operating for a while and although one can give advice, it is not my job to tell them they cannot do what they need to.  

  For now I have set up a redirection so they don't need to connect directly to the linux box.  I still suspect there is a bug in e-smith though, but I was after replies before running off to report it.  I can't beleive that external telnet would not work without someone saying something.

   Cheers,

      Lindsay Steele

>
> Never ever, let *anyone* (not even yourself) use telnet, its
> a big security risc. Instead tell them to use SSH.

Title: Re: Telnet Access
Post by: Gordon Rowell on April 26, 2001, 05:35:51 PM

We are not aware of bugs with the selection of public/private/no telnet access.

Telnet is a supported part of the e-smith server and gateway. We strongly advise the use of SSH, but while telnet is still available, it should work in any of the modes selectable from the web manager.

If you have found what you believe to be a bug, please provide details to bugs@e-smith.com Please include details of the release you are testing and as much detail as you can about the problem.

Naturally, if you are a supported customer, we are happy for you to contact support@e-smith.com

Thanks,

Gordon

Title: Re: Telnet Access
Post by: Lindsay Steele on April 26, 2001, 06:38:49 PM

> Telnet is a supported part of the e-smith server and gateway.
> We strongly advise the use of SSH, but while telnet is still
> available,

I agree.  

> it should work in any of the modes selectable from
> the web manager.
 
  So if public is selected, which it is  and I get the message I am getting in the message above would you consider that a bug ??, no other settings I am missing ??.  
  Even though I have bypassed the need for telnet,  if you say it looks like a bug then I will report it with all the relevant details.

Title: Re: Telnet Access
Post by: Scott Smith on April 26, 2001, 06:55:15 PM

It sounds to me like telnet is working fine. You are getting the message "Standard user login services have been disabled", which is normal and correct. The only account with a shell login is root. User accounts do not have shell access, which is what the message you are seeing is telling you.

There have been discussions elsewhere on the forum detailing how to enable shell access for normal user accounts. This is not a supported e-smith mode, however, so you will be customizing the system.

Title: Re: Telnet Access
Post by: Charlie Brady on April 26, 2001, 07:54:13 PM

Lindsay Steele wrote:

>   So if public is selected, which it is  and I get the
> message I am getting in the message above would you consider
> that a bug ??, no other settings I am missing ??.

http://e-smith.org/faq.php3#8q3

Charlie

Title: Re: Telnet Access
Post by: Franck PIERRE on April 27, 2001, 01:21:07 AM

Lindsay Steele wrote:
>   If you can direct me to a free SSH client that runs on
> Windows and does WY60 terminal emulation I would be very
> interested and might be able to wean the majority of users
> off telnet very quickly

Well, i don't what WY60 is, but you should have a look on PuTTY :
http://www.chiark.greenend.org.uk/~sgtatham/putty.html

Title: Re: Telnet Access
Post by: Lindsay Steele on April 27, 2001, 04:22:20 AM

Charlie Brady wrote:
>
> Lindsay Steele wrote:
>
> >   So if public is selected, which it is  and I get the
> > message I am getting in the message above would you consider
> > that a bug ??, no other settings I am missing ??.
>
> http://e-smith.org/faq.php3#8q3

  Ok thanks, as I suspected a feature and not a bug.

Title: Re: Telnet Access
Post by: Lindsay Steele on April 27, 2001, 04:29:26 AM

> Well, i don't what WY60 is, but you should have a look on
> PuTTY :
> http://www.chiark.greenend.org.uk/~sgtatham/putty.html

   Funny you should mention that, I use Putty when on windows and love it.  I actually emailed this to the customer, the original plan was use to it rather than telnet, unfortunately thier admin tells me this is not the go because it does not support WY60 terminal emulation.

  Seeya,

    Lindsay