All it installed are PdaNet & My3G on my iPhone 4. Did not install any SSH apps. Am I open to the public just by using JailbreakMe.com?
All it installed are PdaNet & My3G on my iPhone 4. Did not install any SSH apps. Am I open to the public just by using JailbreakMe.com?
I tried doing this the other day.
Mobile Terminal crashes upon opening.
And when i try to SSH on my computer, and run the passwd command, it times out?
Whats the command again?
I tried doing this the other day.
Mobile Terminal crashes upon opening.
And when i try to SSH on my computer, and run the passwd command, it times out?
Here is what I did to make sure the SSH password is locked down:
1: Download and install the Mobile Terminal 426 Debian package.
2: Install sudo via Cydia, and add
ALL = (ALL) NOPASSWD: ALL
via the visudo command. This will you to bypass entering the root password by using sudo -i.
3: Change both the mobile user and the root user's passwords. I'd say minimum, 20 characters, realistically 32-48 characters. Just make sure you have both copied down somewhere to be safe.
4: Set /etc/sshd/sshd_config to disallow ssh in as root, disallow ssh in with any password (public key authentication only), and disable it in SBSettings when I can. This should keep almost anyone out, unless there is a zero-day hole in ssh. Maybe changing the port would help, but a decent blackhat likely has run nmap on the box and found where it likely moved to, so I didn't bother.
With these steps, the sshd is still usable for sftp and other items, but using RSA keys, so an attacker is unable to do a brute force attack on the passwords.
Here is a super easy way to change your ssh password. Install rock from Cydia and it will detect your default alpine password and tell you if you want to change your password when you open rock. Just change it from there and then unistall it. The password will still be changed when you uninstall it.
Just a quick related question.
As I understand apple set 'apline' as the default root password. So would changing it ever break/confuse any apple applications that need to use root (if there is any)?