Secure remote shell
Wojciech Puchar
wojtek at wojtek.tensor.gdynia.pl
Thu Nov 29 03:15:26 PST 2007
>> root, that could be automated in a script (no password required).
>
> - have information input into browser
> - have web server save information to server disk in non-executable format
> - have script (or admin) authenticate/authorize commands to be performed
> (recommend doing this manually for a while to ensure you capture as many
> escape type bugs as possible)
> - have commands via another script scrubbed/cleaned/tested
> - have cron perform commands at every X minutes
the most secure compared to others.
only few programs has to be checked for security this way.
it's not dirty way i think
More information about the freebsd-questions
mailing list