|
2014-01-31
, 23:49
|
|
Posts: 5,028 |
Thanked: 8,613 times |
Joined on Mar 2011
|
#1282
|
The Following User Says Thank You to Estel For This Useful Post: | ||
|
2014-02-01
, 00:44
|
Posts: 252 |
Thanked: 221 times |
Joined on Jul 2010
|
#1283
|
The Following 2 Users Say Thank You to chill For This Useful Post: | ||
|
2014-02-01
, 17:57
|
|
Posts: 1,648 |
Thanked: 2,122 times |
Joined on Mar 2007
@ UNKLE's Never Never Land
|
#1284
|
If I may go back to the subject again...In Reverse SSH, changing a field other than the server password will cause all the settings, including the password in plain text, to be written to the log file.
So deleting the log file will not help if you subsequently change e.g. the port number; the username and password will be recorded in the (fresh) log file.
Just thought I'd warn the users.
The Following User Says Thank You to Saturn For This Useful Post: | ||
|
2014-02-01
, 18:14
|
|
Posts: 1,648 |
Thanked: 2,122 times |
Joined on Mar 2007
@ UNKLE's Never Never Land
|
#1285
|
Well, my sshd does not run when the N900 boots up. I have the SSH menu applet installed and sshd is not up after the N900 finishes booting. However, I have an older version of the applet (0.1.9). So I guess the old version was successful in making ssh not start at boot on my N900. I was fine with it not starting until I began using SMSCON.
I don't see a way of having sshd start on my N900 with the v0.1.9 of the applet installed, so I guess I will upgrade to the latest version now (I was holding back after seeing some issues posted in the applet's thread).
|
2014-02-02
, 21:44
|
Posts: 252 |
Thanked: 221 times |
Joined on Jul 2010
|
#1286
|
|
2014-02-03
, 15:00
|
|
Posts: 1,648 |
Thanked: 2,122 times |
Joined on Mar 2007
@ UNKLE's Never Never Land
|
#1287
|
Yes, sir, that applet.
I understand that the log can/should be deleted after updating the settings. I just wanted to say that the "update granularity" is per screen: if you update just one field on the screen, all of the settings from that screen get written to the log. At least that's true for the Reverse SSH settings. One might assume otherwise, ie. that updating the port number only does not cause the username/password to be written to the log, but that's not the case. This then implies that the log should be deleted after any change to any of the fields (in Reverse SSHat least).
The Following 3 Users Say Thank You to Saturn For This Useful Post: | ||
|
2014-02-06
, 20:39
|
Posts: 252 |
Thanked: 221 times |
Joined on Jul 2010
|
#1288
|
Maybe you didn't realize this but the applet's main purpose is to augment security by keeping switched off the ssh daemon and only enable it when the user demands it. So, two solutions come to my mind. Either to remove the applet and choose a good password or create an sms command to start the sshd when you need to initiate the reverse-ssh connection.
On your second point, i can confirm that any change triggers update of all the settings and they are written in the log. I remind again, the log is only accessible by root. If anyone cares about their passwords etc. becoming root should be only possible with a password.
Hope it is clear.
|
2014-02-06
, 21:15
|
Posts: 2,290 |
Thanked: 4,134 times |
Joined on Apr 2010
@ UK
|
#1289
|
There may be methods to have the N900 ask for user password when gaining root, but I haven't looked into that enough, and it might be inconvenient to be asked for a password every time root access is needed.
|
2014-02-07
, 02:41
|
Posts: 252 |
Thanked: 221 times |
Joined on Jul 2010
|
#1290
|
As long as applications are designed correctly (creating there own sudoers file) asking for password to gain root will cause no issues. You will only need to input the password to root in terminal.
sshd has to be running on the N900 for reverse SSH to work. Otherwise the N900 will not accept an incoming connection from the trusted server. Correct?
So if the phone is lost and sshd is not running yet, reverse SSH cannot be done via SMSCON. I guess one solution would be to put sshd in a script to be executed from SMSCON.
21.2011.38-1Smaemo7 (CSSU Stable)
2.6.28.10power53 (not overclocked)
Yes, I search before posting.