Subj : Re: Nightmares / Dreams
To   : Andre
From : McDoob
Date : Thu Mar 31 2022 21:43:49

 An>  Mc> Sir, I would ask you to refresh your lessons on network vulnerability
 An>  Mc> Trust me when I say this: SSH access is root access, if you do it rig
 An> 
 An> For the love all that's holy, you have got to stop talking about this.
 An> You're not doing this well. :)

Very correct, probably. I blame the beer.

 An> Telnet and SSH both, by default, allow access to to log in to a shell.
 An> However, in most (all?) distros, neither of them allow root access
 An> without making a config change. 

I disagree. I won't tell you why.

 An> And if you allow 'sudo su' to your standard user (hi, RPi OS!), then I
 An> dunno what to tell you.

I do know what to say: "Are you stupid?"
Wait, didn't I just do exactly that? (o_O)

Btw, PiBBS is fully protected. Even if anyone were to break in, that break-in is limited only to a 35-dollar, easily-replaced, system.

And THAT's the point I've been trying to make all night! Don't expose expensive systems improperly!

McDoob
SysOp, PiBBS
pibbs.sytes.net

.... My software never has bugs. It just develops random features...

--- Mystic BBS v1.12 A47 2021/12/24 (Raspberry Pi/32)
 * Origin: PiBBS (21:4/135)

.