Securing the VOS Telnet Daemon

ePAPER READ

DOWNLOAD ePAPER

stratus

You also want an ePaper? Increase the reach of your titles

YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.

START NOW

Using SSH tunnels

� How users set up the SSH tunnel will depend on their SSH client

� What happens is

1. SSH client on the client host makes a connection to the SSH server

on the module (link A in next slide)

2. The SSH client on the client host starts listening on the port

specified (12345) during setup on the client host

3. The client’s telnet client makes a connection to localhost port 12345

(link B in next slide)

4. The SSH client sends this connection request to the SSH server on

the module which makes a connection to the port specified (23)

during setup on the client system (link C)

� The connections between the telnet client and SSH on the client

system and between SSHD and telnetd on the module are

unencrypted but never leave the local host

� Communication between hosts is encrypted by SSH

Stratus Enterprise Solid State Drives - Stratus Technologies

Read the case study (PDF) - Stratus Technologies

Never Trust a Systems Vendor Under 30 - Stratus Technologies

Stratus Adds INETCO Software Stratus Adds INETCO Software to ...

Stratus Technologies partners with Seneca to resell Avance ...

Stratus in Public Safety - Stratus Technologies

ftServer ® 3300 system - Stratus Technologies

V Series Model 2404 (PDF) - Stratus Technologies

Read the white paper (PDF) - Stratus Technologies

V Series Model 6408 (PDF) - Stratus Technologies

ftScalable on OpenVOS Best Practices - Stratus Technologies

V Series Model 100 (PDF) - Stratus Technologies

Read Press Release (PDF) - Stratus Technologies

Using SSH tunnels � How users set up the SSH tunnel will depend on their SSH client � What happens is 1. SSH client on the client host makes a connection to the SSH server on the module (link A in next slide) 2. The SSH client on the client host starts listening on the port specified (12345) during setup on the client host 3. The client’s telnet client makes a connection to localhost port 12345 (link B in next slide) 4. The SSH client sends this connection request to the SSH server on the module which makes a connection to the port specified (23) during setup on the client system (link C) � The connections between the telnet client and SSH on the client system and between SSHD and telnetd on the module are unencrypted but never leave the local host � Communication between hosts is encrypted by SSH 14

Using SSH tunnels C Telnetd Port 23 SSHD Port 22 A SSH Port 12345 B Client 15

Page 1 and 2: Securing the VOS Telnet Daemon Noah
Page 3 and 4: Background - why is the Telnet daem
Page 5 and 6: Restricting connections with TCP Wr
Page 7 and 8: Restricting connections with TCP Wr
Page 9 and 10: Restricting connections with TCP Wr
Page 11 and 12: Selective listening with -local_ip
Page 13: Using SSH tunnels � When using an
Page 17 and 18: Using SSH tunnels � Scanners will
Page 19 and 20: Using IPSec � ipsec.conf file •
Page 21 and 22: Using IPSec spd[2] spd index = 2 sa
Page 23 and 24: What not to do � Do not remove (o
Page 25 and 26: Questions? a = b a^2 = a*b a^2-b^2

Securing the VOS Telnet Daemon

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?