FAQ: How do I make secure connections with Macintosh OS X?
| USING AUTHENTICATED (SECURE) TELNET: Once you have Kerberos installed, you can use authenticated telnet to connect to machines (e.g., isua1.iastate.edu) and have all of your traffic encrypted. 1. If you have not done so already, log in to Kerberos. 2. Click Open -> Applications -> Utilities and run Terminal. 3. Go to the Terminal menu and select "Preferences...". 4. Set "Declare terminal type as" to "xterm". You only need to do this once. 5. Quit and restart Terminal. 6. Type the following command: "telnet -faxl netid machine.name" where "netid" is your Iowa State Network-ID and "machine.name" is the machine name. If your local username and your Net-ID are the same, enter "telnet -fax machine.name". Note: If you are telnetting to an isua machine, you will have to give the exact name for the machine (e.g., isua1, isua2 ... isua5) for Kerberos to work properly. This telnet command will log you into the remote machine automatically and will use encryption to secure the communications. USING AUTHENTICATED (SECURE) FTP: Once you have Kerberos installed, you can use authenticated telnet to connect to machines (e.g., isua.iastate.edu) and have your username and password encrypted. Fetch is a graphical FTP client that will do encrypted FTP. Install Fetch by doing the following: 1. Go to http://www.it.iastate.edu/downloads/ and click on the Mac OS X download link. 2. Click on the Fetch link. 2. If the Fetch disk image has not automatically been mounted, double-click on the .dmg file. 3. Open the Fetch disk image. In there is a Fetch Folder. Drag that to your Applications folder. Use Fetch by doing the following: 1. Open the Fetch Folder in the Applications folder, and run the Fetch program. 2. Enter the following information (entering the remote machine name for "machine.name" and your own Net-ID for "Net-ID"): Host: machine.name User ID: Net-ID Security: GSS <New versions of Fetch will have: Connect: FTP with GSSAPI> Encrypt Session: Checked If the remote machine is one of the isua machines, you will have to give the exact name for the machine (e.g., isua1, isua2 ... isua5) for Kerberos to work properly. | |
| Was this information helpful? | ||
