We have moved to a new Sailfish OS Forum. Please start new discussions there.

Revision history [back]

click to hide/show revision 1
initial version

posted 2013-12-26 15:17:27 +0200

Plnt gravatar image

Disable SSH daemon when remote connections are disabled

Current implementation of disabling Remote connection in developer mode just disables login of nemo user but it doesn't completely disable the SSH daemon. I don't mind about the SSH listening on USB connection but I don't like the idea of having SSH daemon listening on the WiFi connection when connected to untrusted WiFi. Not that it's high-risk but it's another way how the security in the phone could be possibly exploited.

How to reproduce:

  1. Go to Settings -> System settings -> Developer mode and enable it.
  2. Disable Remote connection (if enabled).
  3. Reboot the phone.
  4. SSH is still listening on port 22 and is open not just via USB networking but completely open via WiFi connection.
click to hide/show revision 2
retagged

updated 2013-12-26 15:47:35 +0200

Kontio gravatar image

Disable SSH daemon when remote connections are disabled

Current implementation of disabling Remote connection in developer mode just disables login of nemo user but it doesn't completely disable the SSH daemon. I don't mind about the SSH listening on USB connection but I don't like the idea of having SSH daemon listening on the WiFi connection when connected to untrusted WiFi. Not that it's high-risk but it's another way how the security in the phone could be possibly exploited.

How to reproduce:

  1. Go to Settings -> System settings -> Developer mode and enable it.
  2. Disable Remote connection (if enabled).
  3. Reboot the phone.
  4. SSH is still listening on port 22 and is open not just via USB networking but completely open via WiFi connection.
click to hide/show revision 3
retagged

updated 2014-11-30 17:56:14 +0200

ralooyar gravatar image

Disable SSH daemon when remote connections are disabled

Current implementation of disabling Remote connection in developer mode just disables login of nemo user but it doesn't completely disable the SSH daemon. I don't mind about the SSH listening on USB connection but I don't like the idea of having SSH daemon listening on the WiFi connection when connected to untrusted WiFi. Not that it's high-risk but it's another way how the security in the phone could be possibly exploited.

How to reproduce:

  1. Go to Settings -> System settings -> Developer mode and enable it.
  2. Disable Remote connection (if enabled).
  3. Reboot the phone.
  4. SSH is still listening on port 22 and is open not just via USB networking but completely open via WiFi connection.
Copyright © Jolla Ltd. 2013-2019. All rights reserved.
about | faq | help | privacy policy | terms of service | give feedback
Powered by Askbot version 0.7.49