Why would one want an ssh toggle

Discussion in 'Jailbreaks and iOS Hacks' started by aliensarecool, Feb 27, 2012.

  1. aliensarecool macrumors 6502a

    aliensarecool

    Joined:
    Feb 25, 2012
    #1
    Wirelessly posted (Mozilla/5.0 (iPhone; CPU iPhone OS 5_0_1 like Mac OS X) AppleWebKit/534.46 (KHTML, like Gecko) Version/5.1 Mobile/9A406 Safari/7534.48.3)

    What is wrong with it always being on? Maybe I don't understand it fully, even after searching
     
  2. dhlizard macrumors G4

    dhlizard

    Joined:
    Mar 16, 2009
    Location:
    The Jailbreak Community
    #2
    OpenSSH starts up everytime an iPhone is rebooted or turned on.
    Unless one changes the root and mobile passwords, there is a vulnerability of an intrusion.
    If one changes the passwords, there is little risk of an intrusion.
    Turning it off might save some battery usage also.
     
  3. OceanView macrumors 65816

    Joined:
    Sep 16, 2005
    #3
    how do you change the password on 5.0.1? mobilterminal does not work anymore
     
  4. rKunda macrumors 65816

    rKunda

    Joined:
    Jul 14, 2008
    #4
    On the main Cydia page there are some links to the bottom. One of them shows how to change the password.
     
  5. maturola macrumors 68040

    maturola

    Joined:
    Oct 29, 2007
    Location:
    Atlanta, GA
    #5
    As DH said, first you are expose even with a changed password, if a new vulnerability become public, your phone will be there like a house with a wide open door. Second the "daemon" is always working (the part of the server that listen all the time for incoming connections) as any service running in the background it will consume battery.

    now i ask you a question, what is wrong with having disable, and enable it just when you need it? how often do you really access your device?
     
  6. mlts22 macrumors 6502a

    Joined:
    Oct 28, 2008
    #6
    If one is worried about it, and knows they will log in from a certain set of machines, just configure sshd to disallow passwords. That way, a would-be intruder isn't going to have any way to get in without access to your other boxes.
     
  7. OceanView macrumors 65816

    Joined:
    Sep 16, 2005
    #7
    For some reason, I am unable to get past the login password prompt when using putty. I typed alpine but it keeps saying the password is wrong.

    Any ideas?
     
  8. rKunda macrumors 65816

    rKunda

    Joined:
    Jul 14, 2008
    #8
    Username should be 'root' sans quotes. I don't know if that's what you did. Also, make sure SSH is ON (been there done that, hah). Also, check to make sure you're on the right network.
     
  9. megamanbnmaster macrumors 6502

    Joined:
    Jan 26, 2008
    #9
    to change the password:

    login via SSH from terminal or equivalent with mobile as user
    type in 'passwd'
    change the password from alpine to whatever you want.
    then logout
    log back in via SSH with root as user
    type in 'passwd'... etc repeat, and then your SSH should be safe.

    I'd still disable SSH port when not using it though, just as a habit of security.
     
  10. hackthatphone macrumors 68000

    hackthatphone

    Joined:
    Jul 28, 2010
    #10
  11. OceanView macrumors 65816

    Joined:
    Sep 16, 2005
    #11
    THANKS GUYS! That worked! :)
     
  12. dhlizard macrumors G4

    dhlizard

    Joined:
    Mar 16, 2009
    Location:
    The Jailbreak Community
    #12
    While I don't really agree that OpenSSH with changed passwords leaves you open to exploit, with the newest iFunBox, using OpenSSH is now a 2nd choice.
     
  13. maturola macrumors 68040

    maturola

    Joined:
    Oct 29, 2007
    Location:
    Atlanta, GA
    #13
    Just look it up, it happen last week, before they push an update, exploits are found all the time on any software (same reason why we have jailbreak on the first place)
     
  14. labman macrumors 604

    labman

    Joined:
    Jun 9, 2009
    Location:
    Mich near Detroit
    #14
    Wirelessly posted (Mozilla/5.0 (iPhone; CPU iPhone OS 5_0_1 like Mac OS X) AppleWebKit/534.46 (KHTML, like Gecko) Version/5.1 Mobile/9A406 Safari/7534.48.3)

    Funny I knew who the TS was just by the title.
     
  15. LoloBond macrumors 6502

    Joined:
    Nov 21, 2011
    #15
    hmmm I didn't know there was a mobile password. thanks!
     

Share This Page