KpyM Telnet/SSH Server - Forum
KpyM Telnet/SSH Server v1.19 Released!
Kroum Grigorov KpyM Telnet/SSH Server v1.19 Released!
What's new:

[b:7ae387617e]telnet auto-login[/b:7ae387617e]
automatic login based on the telnet client IP address/10x to Rob Stocks for implementing this/

[b:7ae387617e]ssh publickey authentication[/b:7ae387617e]
automatic login based on ssh publickey

[b:7ae387617e]ssh repeat key exchange[/b:7ae387617e]
/should work now/

[b:7ae387617e]sftp bug fixes[/b:7ae387617e]

[b:7ae387617e]sftp list drives[/b:7ae387617e]
KTS will list your host drives under the root folder /

[b:7ae387617e]sftp init script[/b:7ae387617e]
can be used to map your network drives in sftp sessions

[b:7ae387617e]new subsystems access[/b:7ae387617e]
instead of "allow_sftp/allow_portforward/..." parameters there are now files in the kts\subsystems folder. you can disable a subsystem by deleting/renaming the coresponding file -or- you can now have a per user control of the subsystems by setting NTFS permissions on these files.
For ex; to lock out "Guest" account from all access you can set "deny read" on the files in the subsystems folder to the "Guest" user.

[b:7ae387617e]built against cryptlib 3.3.3[/b:7ae387617e]
KTS is now build against cryptlib v 3.3.3

Click [url=l0c41://]here[/url] to get KTS v1.19a


Great Job.
>ssh publickey authentication
>automatic login based on ssh publickey
But this is security hole:
Passwords stores in %programfiles%\kts\publickey_logon.ini as plain text.

Kroum Grigorov
> as plain text
Yes it is security hole, and it is up to you to secure the access to the ini files.
KTS runs as "Local System" so you may DENY all access to the ini files to your regular users.

This is the same for autologin and default user/pass parameter.



© 2007 - 2008 Kroum Grigorov
Powered by phpBB © 2001, 2005 phpBB Group