brnstnd@kramden.acf.nyu.edu (Dan Bernstein) (12/01/90)
In article <1611@svin02.info.win.tue.nl> wswietse@win.tue.nl writes: > This package provides a couple of tiny front end programs that log all > incoming requests to connection-oriented internet services (examples: > finger, systat, telnet, ftp, rlogin, rsh, exec). Another way to solve this problem is to use the servers illustrated in authutil (comp.sources.unix volume 22). This has the advantage that you will get the remote username from any host supporting RFC 931 security. By installing auth (same volume) you support RFC 931 security too. Eventually you can start cutting off unauthenticated connections. ---Dan
wietse@wzv.win.tue.nl (Wietse Venema) (12/01/90)
brnstnd@kramden.acf.nyu.edu (Dan Bernstein) writes: >[plug] Dan, you are missing the point. My trivial daemon front-end programs are for those who lack the time, expertise etc. to port, install and maintain anything that requires more than just renaming a couple of executables. More and more systems on the Internet are being administered by less and less wizard-type persons (such as me). It is this category that is most vulnerable to attack, but that also is entirely dependent on vendors to adopt more powerful technology such as the `auth' package.