Active Topics
-
Camera phone competition March 2023 "Endless" (35)
to General by Maemish - 5 hrs, 50 mins ago -
TLS 1.2 for N9 is ready (28)
to MeeGo / Harmattan by smartblu9 - 7 hrs, 4 mins ago -
Maemo repository (3)
to Community by torsen - 22 hrs, 33 mins ago -
Error after installing Leste on sdcard (11)
to Maemo 7 / Leste by Maemish - 1 day, 20 hrs ago -
Introducing ubiboot N9 (multiboot OS loader) (1,393)
to Alternatives by smatkovi - 3 days, 2 hrs ago - more...
 |
|
2007-11-28
, 03:09
|
|
Posts: 641 |
Thanked: 27 times |
Joined on Apr 2007
|
#2
|
Originally Posted by jay24
Having a full sized keyboard for doing command line config changes is really handy.
Hello,
First post and have an N810 coming tomorrow. I have spent the last number of weeks researching the N800/N810 and did not quite come across an answer to a question I have (I did search this site but did not find an exact answer). First, I am a developer and understand the "root" id in UNIX/Linux and that it should be locked down. Now for the question: if I do not install openssh or dropbear, do I really need to change the root password (i.e., will the N810 be secure)? I am thinking that the N810 is really an "appliance" and that out-of-the-box it should be secure. I am not really against changing the root password, I am just going out of town the day I get the N810 and most likely will not have a chance to do it.
Also, does changing the root password cause any issues with installing software? I am guessing that OS2008 uses "root" for various things and am not sure how it gains access to that account (if the password is changed).
Last question - can someone give me a few sentence reason to install openssh? I read a lot about what you can use it for but was looking for a general benefit of having it.
Thanks
Jay
__________________
Just because you are online, doesn't mean you don't have to form a full sentence.
SEARCH! It's probably already been answered.
Just because you are online, doesn't mean you don't have to form a full sentence.
SEARCH! It's probably already been answered.
|
|
2007-11-28
, 04:48
|
|
Posts: 2 |
Thanked: 0 times |
Joined on Nov 2007
|
#3
|
Originally Posted by jay24
No, Maemo platform use "sudo" to execute tasks required "root" right.
Hello,
Also, does changing the root password cause any issues with installing software? I am guessing that OS2008 uses "root" for various things and am not sure how it gains access to that account (if the password is changed).
You can check /etc/sudoers to see what tasks is allowed to execute.
Changing password will not affect the normal operation.
Besides, ask I know, OS2008 lock the account "root" by default. That mean you cannot login with any password. You can check if there is a "!" after "root:" in /etc/passwd
|
|
2007-11-28
, 11:34
|
|
Posts: 3,841 |
Thanked: 1,079 times |
Joined on Nov 2006
|
#4
|
Change the root password if you install the SSH server. Or you may be in for a surprise at some wi-fi hotspot!
(Yesterday I read a posting that said, IIRC, that the latest open-ssh package actually prompts you to change the pw during post-installation. Don't take my word for it though.)
EDIT: If OS2008 locks the root account (the user account is locked in OS2007 already) then you'll have to set up RSA authorization to use the ssh server at all. Anyway, if it's locked it's safer.
Last edited by TA-t3; 2007-11-28 at 11:37.
(Yesterday I read a posting that said, IIRC, that the latest open-ssh package actually prompts you to change the pw during post-installation. Don't take my word for it though.)
EDIT: If OS2008 locks the root account (the user account is locked in OS2007 already) then you'll have to set up RSA authorization to use the ssh server at all. Anyway, if it's locked it's safer.
__________________
N800/OS2007|N900/Maemo5
-- Metalayer-crawler delenda est.
-- Current state: Fed up with everything MeeGo.
N800/OS2007|N900/Maemo5
-- Metalayer-crawler delenda est.
-- Current state: Fed up with everything MeeGo.
Last edited by TA-t3; 2007-11-28 at 11:37.
 |
|
2007-11-28
, 12:13
|
|
Posts: 739 |
Thanked: 159 times |
Joined on Sep 2007
@ Germany - Munich
|
#5
|
Originally Posted by TA-t3
Uhmm what kind of surprise?
Change the root password if you install the SSH server. Or you may be in for a surprise at some wi-fi hotspot!
I'm curious about that!
|
|
2007-11-28
, 13:17
|
|
Posts: 3,841 |
Thanked: 1,079 times |
Joined on Nov 2006
|
#6
|
Originally Posted by free
The root account may be locked in OS2008, but in OS2007 all devices came with a standard, commonly known root password. Thus, if you install an ssh server anyone logged on to that hotspot will be able to ssh into your Nokia tablet as root, if they know about Nokia tablets and find you on the network. Unless you lock down the root account or change the root password.
Uhmm what kind of surprise?
I'm curious about that!
E.g.
$ ssh -l root 192.168.1.12 rm -rf /
Password:
..
boom.
__________________
N800/OS2007|N900/Maemo5
-- Metalayer-crawler delenda est.
-- Current state: Fed up with everything MeeGo.
N800/OS2007|N900/Maemo5
-- Metalayer-crawler delenda est.
-- Current state: Fed up with everything MeeGo.
|
|
2007-11-28
, 17:21
|
|
Posts: 739 |
Thanked: 159 times |
Joined on Sep 2007
@ Germany - Munich
|
#7
|
Ah ok 
I thought root account was locked on OS2007.
Also PermitRoot was set I guess.
Good that I changed it then!
I thought root account was locked on OS2007.
Also PermitRoot was set I guess.
Good that I changed it then!
|
|
2007-11-28
, 17:30
|
|
Posts: 204 |
Thanked: 15 times |
Joined on Jan 2007
@ Berlin, Germany
|
#8
|
Originally Posted by jay24
This is just one reason: With ssh installed you can use winscp (you do use windows, do you?) to access the files on your tablet via wlan with winscp's file explorer. No cables needed, no sd card locked during file transfer. From Linux KDE use konqueror, for instance, to get the same comfort.
Hello,
...
Last question - can someone give me a few sentence reason to install openssh? I read a lot about what you can use it for but was looking for a general benefit of having it.
Thanks
Jay
Last edited by gammer; 2007-11-28 at 17:32.
|
|
2008-01-15
, 16:15
|
|
Posts: 30 |
Thanked: 10 times |
Joined on Oct 2007
|
#9
|
Originally Posted by gammer
A couple of questions. Yes, I have searched, that's how I ended up here. :-)
This is just one reason: With ssh installed you can use winscp (you do use windows, do you?) to access the files on your tablet via wlan with winscp's file explorer. No cables needed, no sd card locked during file transfer. From Linux KDE use konqueror, for instance, to get the same comfort.
I use Windows, but at work where there is no wifi. What can I access via USB? All I see is the folder with the maps.
At home I have wifi, but I'm on a Mac. Anyone have software recommendations?
First post and have an N810 coming tomorrow. I have spent the last number of weeks researching the N800/N810 and did not quite come across an answer to a question I have (I did search this site but did not find an exact answer). First, I am a developer and understand the "root" id in UNIX/Linux and that it should be locked down. Now for the question: if I do not install openssh or dropbear, do I really need to change the root password (i.e., will the N810 be secure)? I am thinking that the N810 is really an "appliance" and that out-of-the-box it should be secure. I am not really against changing the root password, I am just going out of town the day I get the N810 and most likely will not have a chance to do it.
Also, does changing the root password cause any issues with installing software? I am guessing that OS2008 uses "root" for various things and am not sure how it gains access to that account (if the password is changed).
Last question - can someone give me a few sentence reason to install openssh? I read a lot about what you can use it for but was looking for a general benefit of having it.
Thanks
Jay