UsePrivilegeSeparation
Lisa,
I wonder if the data transport (over cell network) is secured... can a sophisticated cell phone eavesdropper snoop on my ssh session?
-jmzOn Tue, Nov 25, 2008 at 11:07 AM, Lisa Kachold <lisakachold@obnosis.com> wrote:
Check out midpssh - works on BlackBerry, and most PDA's - since it's compiled for various ARM and other phone devices.
http://www.xk72.com/midpssh/
Point your phone browser to install:
http://xk72.com/wap
Security Disclaimer:
Remember to limit your server SSH access points (where possible) through ACL [iptables] by IP [check your phone settings for IP address], use strong passwords, and deploy daemon wrappers like SSHIT or SSHUTOUT [to protect against brute force and dictionary attacks], enable strong logging and log servers [so the logs can't be trivially edited] and alternately run on a unique port (not 2222 [everyone uses 2222]) if you MUST leave SSH open to PSTN/Internet gateways.
www.Obnosis.com | http://en.wiktionary.org/wiki/Citations:obnosis | http://www.urbandictionary.com/define.php?term=obnosis (503)754-4452
Catch the January PLUG HackFest! Kristy Westphal, CSO for the Arizona Department of Economic Security will provide a one hour presentation on forensics.
Get more done, have more fun, and stay more connected with Windows Mobile®. See how.
---------------------------------------------------
PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us
To subscribe, unsubscribe, or to change your mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
---------------------------------------------------
PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us
To subscribe, unsubscribe, or to change your mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss