Subj : Re: Nightmares / Dreams
To   : Gamgee
From : Nightfox
Date : Fri Apr 01 2022 09:22:49

  Re: Re: Nightmares / Dreams
  By: Gamgee to McDoob on Thu Mar 31 2022 10:46 pm

 Mc>> Sir, I would ask you to refresh your lessons on network
 Mc>> vulnerability. Trust me when I say this: SSH access is root
 Mc>> access, if you do it right.

 Ga> Hahahahahahahaha! He just keeps digging that hole deeper and deeper!

 Ga> It's comical and pathetic, at the same time.

 Ga> The *METHOD* of access (SSH/telnet/rlogin/whatever) has *NOTHING* to do
 Ga> with whether 'root access' is available/achieved. I repeat, NOTHING.

Yeah, I've used SSH on multiple operating systems (Linux, Windows, Mac, etc.) for a long time and had never heard of this "SSH access is root access" before now..  SSH is for encrypting the terminal session, and gaining root access is something separate.  And also this idea of SSHing to a BBS dropping you to the OS was something new.  Spectre said in some cases you might need to set up the OS's SSH to forward to the BBS software, so maybe I could see how that could happen in that case..  Synchronet (which I run) has its own SSH capability though, and in all the years I've been running Synchronet, I've never heard of any SSH user being dropped to the OS with it.  (Also, I'm running mine on Windows for now, so I think I'd even have to go through extra steps to enable SSH for Windows..)

Nightfox
--- SBBSecho 3.15-Win32
 * Origin: Digital Distortion: digdist.synchro.net (21:1/137)

.