LinuxQuestions.org
Go Job Hunting at the LQ Job Marketplace
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 10-14-2003, 12:46 PM   #1
joesbox
Member
 
Registered: Feb 2003
Location: hampton va
Distribution: ubuntu
Posts: 502

Rep: Reputation: 30
if i stop sshd


if i stop sshd will i lose secure ftp or will i only lose the ability to ssh remote access????
 
Old 10-14-2003, 12:51 PM   #2
jharris
Senior Member
 
Registered: May 2001
Location: Bristol, UK
Distribution: Slackware, Fedora, RHES
Posts: 2,243

Rep: Reputation: 46
If you mean being able to "sftp hostname" into your box then yes, this is all tied into ssh so if you kill sshd you will lose both.

cheers

Jamie...
 
Old 10-14-2003, 12:58 PM   #3
joesbox
Member
 
Registered: Feb 2003
Location: hampton va
Distribution: ubuntu
Posts: 502

Original Poster
Rep: Reputation: 30
here is the deal. i am not wondering about ftp in i am looking as far as ftp out. and any http requests to download. i have cronjobs that ftp and download and perl scripts that use http to download images. will the outgoing requests be encripted or will i have to start sshd for that to happen?
 
Old 10-14-2003, 01:27 PM   #4
jharris
Senior Member
 
Registered: May 2001
Location: Bristol, UK
Distribution: Slackware, Fedora, RHES
Posts: 2,243

Rep: Reputation: 46
Running SSH won't effect ftp or http in any way. If you need to encrypt your http transfers then you need to use https, but that needs to be setup on the server you are downloading from.

I don't really follow what you are trying to accomplish though.

cheers

Jamie...

Last edited by jharris; 10-14-2003 at 01:29 PM.
 
Old 10-14-2003, 01:48 PM   #5
joesbox
Member
 
Registered: Feb 2003
Location: hampton va
Distribution: ubuntu
Posts: 502

Original Poster
Rep: Reputation: 30
i just got bitched out by my boss because i got the dead line of tomorrow to have RH7.1 (with openssh 2.5.2) to have it upgraded due to the latest sec. flaw. he wants it up to 3.7.1p2-1 and with that much of an upgrade i am going to have to upgrade over half the OS due to dependencies. so this is how my server works:

i have perl scripts that contact outside servers (outside being outside of my lan) and retreive alpha/numeric data and images that pertain to my job. this is sending out a constant stream of data. some of the perl scripts use http and ftp to do the retreiving. one of them uses mirror. i was told by my predosesor (sp) that with ssh we are using 128bite encryption and that the lan ppl only see bits of info travel across their screen when they check out what we are doing. mind you that this is all out going and retrieving. no one hits this server except for those of us on the same router (those in my office)
anyway my boss just bitched me out because "the FTP is 'illegal' (according to the lan shop) because it is not secure" and "Now we have no SSH which prevented the LAN shop from seeing things we were doing"

is she correct or is she overdoing it or am i just an idiot????

Last edited by joesbox; 10-14-2003 at 01:50 PM.
 
Old 10-14-2003, 02:28 PM   #6
jharris
Senior Member
 
Registered: May 2001
Location: Bristol, UK
Distribution: Slackware, Fedora, RHES
Posts: 2,243

Rep: Reputation: 46
Sounds like you might be establising an SSH tunnel then running your http and ftp through that. If you need a quick fix and don't mind breaking your dependencies just install the latest OpenSSL and OpenSSH from source. I'm surprised that however managed (or failed to manage) the servers before you didn't keep SSH up to date if it is so important to you business.

How many servers do you need to update?

cheers

Jamie...
 
Old 10-14-2003, 02:38 PM   #7
joesbox
Member
 
Registered: Feb 2003
Location: hampton va
Distribution: ubuntu
Posts: 502

Original Poster
Rep: Reputation: 30
i have two servers. one running RH7.1 and the other which is still being brought up to be a replacement (my idea) is RH9

as far as the managment goes it was fine. Linux is not supported by my lan shop (they need to see that pretty little window) but security is a big deal. so the sys admin before me just let it go at the fact that "they only bought RH7.1 so that is all that i am going to use. he didn't push the fact that they need to keep the up2date working or anything. so here i am trying to get everything up and working to code so to say.
my boss tried to say that i need to get everything ported over to windows (and i am about to do that just so that when i leave they aren't screwed) but we showed him that it would be more cost effective to leave it as linux.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
How do I stop services from restarting after I stop them? M$ISBS Linux - Software 3 10-27-2005 09:13 PM
How do I stop the sshd daemon? ebenh Linux - Software 5 09-04-2004 02:06 PM
Enabling SSH in mandrake 9.2 - sshd vs. sshd-xinetd DogTags Linux - Newbie 7 11-25-2003 01:17 PM
sshd kylo8787 Linux - Networking 4 04-15-2002 06:14 PM
How to stop SSHD process???? adamrau Linux - Security 2 12-07-2001 04:12 PM


All times are GMT -5. The time now is 05:14 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration