DMitri <firstname.lastname@example.org> wrote:
How do I protect QNX4 node? The problem is that any root from any other QNX4
node remains root on my node too. Does it mean that anyone, who can plug
the notebook into my presumably private LAN, can destroy the system?
Can I somehow tell the system that it must deny network connections from any
nodes except, say, 1,2 and 3?
Run Net with the -A command line option. Then, Net won’t automatically
add nodes to its netmap when an incoming request comes in, and no nodes
that aren’t in your existing netmap can be talked to, so if someone
just plugs into your lan, they can’t talk to your computers.
Well… if they can sniff the packets, and can spoof the MAC address
of oneo f your machines already on the lan, then they can still hack
into your machines.
Effectively, to get any network security, you really need physical
security, but the above makes things a bit harder.
Otherwise, the QNX network model is essentially that all machines on
the network are really one big virtual computer running on multiple
CPUs (transparent networking) – there is effectively no inter-node
QNX Training Services
I do not answer technical questions by email.