Telnet needs authorisation

Question

Telnet needs authorisation

Closed this issue 7 years ago · 5 comments

nekromant commented 10 years ago

Otherwise we'll forget about it.

Answer 1 · 2015-03-24T15:21:54.000Z

On mar., mars 24, 2015 at 08:09:01 -0700, Andrew wrote:

Otherwise we'll forget about it.

Do you mean a password ?

I've been thinking of a no-auth telnet but auth required for
sensible commands through telnet so anyone could read sensors
but not reset nor tftp update nor show env (showing passwords), ...
unless authorized through a sort of sudo command.

Answer 2 · 2015-03-24T15:25:29.000Z

That mode would require a lot of hackery as I see it. e.g. add permission section for every command. Just adding a plain login/password prompt that can be turned off should be enough. Automated scripts will have no problem to supply that.

Answer 3 · 2015-03-24T15:27:35.000Z

For single user mode only password check will be enough. If password was not set in env, so allow auth to everyone.

Answer 4 · 2015-03-24T15:29:14.000Z

@darkbyte-ru Sound's like it should be enough.

Answer 5 · 2018-01-13T14:06:08.000Z

Implemented in current master, closing this issue.