Open SSH Backdoor
The opensshbackdoor program makes remote maintenance over ssh possible.
SSH is an ancronyn for Secure Shell. It makes encrypted network possible. Details are at SSH Homepage.
The backdoor script on tjener makes it possible to open a connection for remote help.
place where the DebianEdu server is
- people who do maintaince on the servers
- passage way between two points
This the important part of the Openssh backdoor. Both school and contractor agree on which server, which port and which account to use. Say the server is gate.contractor.edu, the port number is 2309 and the account worm.
Work in progress / FIXME
Fill in the values for server, port and account Example given, when school people type cat /etc/default/backdoor they see
RHOST=gate.contractor.org RPORT=2309 RUSER=worm
When the school decides they need contractor, they open the backdoor by
and give a telephone call to contractor and announce that they have opened the tunnel.
They pick the tunnel by
ssh -p 2309 email@example.com
and they do their maintiance job.
Closing the backdoor
The school does
Here is the script. Copied from debian-edu-config/debian/debian-edu-config.open-backdoor in our svn repository, at revision 7223. The debian/changelog of debian-edu-config has this entry
* Remove our backdoor (which was poorly implemented and misnamed feature, see the buglog for details). (Closes: #629040)
from 2012. #629040 https://bugs.debian.org/629040
- It might be relevant to use autossh (which I believe was added to Debian after the backdoor script was invented for Debian EDU)
-- JonasSmedegaard 2006-07-13 14:38:26