Login or Register to Ask a Question and Join Our Community


AIX

Deny rsh,tn,or rlogin

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Operating Systems AIX Deny rsh,tn,or rlogin
# 1  
Old 03-28-2013
Deny rsh,tn,or rlogin
Is there a way to deny access to a specific remote login option.

example:
usera--deny telnet access but keep rsh and rlogin
userb--keeps telnet, rsh, and rlogin

I'm basically trying to contol the access per services instead of changing the LOGIN REMOTELY(rsh,tn,rlogin) option to yes or no.
# 2  
Old 03-28-2013
tcp_wrappers is what comes to mind. It is available via AIX standard media as well as via various download sites (I should probably repackage it myself).

---------- Post updated at 06:14 PM ---------- Previous update was at 06:07 PM ----------

Some quick links:
Using TCP Wrappers to control access
aix tcp wrappers hosts.allow hosts.deny?
TCP Wrappers on AIX 5.3
https://www.unix.com/unix-advanced-ex...ing-users.html
TCP wrappers

So, above - 1 from ibm developerworks, 4 from unix.com
# 3  
Old 03-29-2013
Michaels suggestion is a good one. It should be pointed out, though, that using ANY of the mentioned protocols - rsh, telnet, rlogin, ... - is a severe security hazard and should be replaced by some securified protocol: ssh, scp, etc..

I hope this helps.

bakunin
# 4  
Old 05-07-2013
hii broo..

You must check the config inetd.conf

or edit this: vi /etc/inetd.conf

deleted # telnet
# 5  
Old 05-08-2013
To edit /etc/inetd.conf I would recommend using the command
Code:
# smitty otherserv

# 6  
Old 05-08-2013
If you comment out the services, inet will not listen.
# 7  
Old 05-09-2013
With AIX, it is not considered "best practice" to edit the files directly. Sometimes it cannot be helped (non-standard services, i.e. services not supplied on AIX media) - but yes, if you edit the file - comment or delete the entry you do not want THEN! run refresh -s inetd
Login or Register to Ask a Question

Previous Thread | Next Thread

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

/etc/hosts.deny

Hi there, For /etc/hosts.deny was it used to deny access from the internet? (2 Replies)
Discussion started by: alvinoo
2 Replies

2. Shell Programming and Scripting

Rlogin / RSH / SSH

Hello, I am looking for a connection method in which i can connect to a remote server but I want to have only one chance to connect to the remote server (not to be asked for iuser name and password again). If I have provided a wrong password then I want the connection to broke and be routed... (1 Reply)
Discussion started by: LiorAmitai
1 Replies

3. UNIX for Dummies Questions & Answers

RSH/rlogin problem

Hello, When I try and RSH/RLOGIN onto a box with user root, I get the prompt but the username/password combination NEVER work. I have the password up properly on the host machine. Does rsh/rlogin not make use of ./etc/passwd and /etc/shadow? (1 Reply)
Discussion started by: mojoman
1 Replies

4. UNIX for Dummies Questions & Answers

Hosts.deny entry

Hello I want to block individuals who attempt to use ssh to loggon to one of my machines from a certain IP address. I added the following entry in hosts.deny. Will the entry do what I want to do? ssh: 202.111.128.225 (3 Replies)
Discussion started by: mojoman
3 Replies

5. AIX

allow / deny root logins

Hello everyone I have to limit the root logins on my aix box (aix 5.3) I change the value on the /etc/security/user default (login and rlogin) change to false and add to root (rlogin and login = false) I tried in different ways but I got the same. Root still can login I try algo... (6 Replies)
Discussion started by: lo-lp-kl
6 Replies

6. Shell Programming and Scripting

ftp, rlogin , rcp, rsh are not wroking

Hi Friends I am facing one problem, I am not able to use ftp, rlogin , rcp, rsh in a particular server. when I am trying to ftp certain file from that server it is giving Connection closed by remote host. Now from other unix box I am not able to rlogin that particular server. as .rhosts... (3 Replies)
Discussion started by: itsjoy2u
3 Replies

7. AIX

Deny root rlogin

Hi, I have to forbid root-logins on all my servers, expect from two machines, these 2 machines login with root without a password it was quite easy with ssh, but I have a problem regarding rsh/rlogin, an there are a lot of rsh jobs, so it would take a lot of time to change all this... (4 Replies)
Discussion started by: funksen
4 Replies

8. Programming

rlogin/rsh incoming port

Hi all, In need to know why my sample code below that connect to a rlogind (513) fails, but original unix rlogin does not ? (.rhosts is verified to be correct) I heard rlogin/rsh bind to a reserved port before connecting to the rlogin server. what are they ??? s = socket(AF_INET,... (1 Reply)
Discussion started by: andryk
1 Replies

9. UNIX for Dummies Questions & Answers

Telnet deny

Hi all I'm using an AIX 5 machine. I'm trying to telnet from this machine to another Aix machine. When I use the "root" user - Everything works. I can telnet successfully the other machine When I use another user but root - I can't telnet the machine: noah@logist:/home/noah>telnet aixtst... (2 Replies)
Discussion started by: sunbird
2 Replies

10. UNIX for Dummies Questions & Answers

rsh & rlogin

I'm trying to execute the next command: " rsh CompName date " which means i want to get the date from a machine which i have its CompName. but i get the answer : "Connection refused" what do i need to do ? how can i sign myself as user or guest in the other machine ? thanks in... (2 Replies)
Discussion started by: Inbal
2 Replies
Login or Register to Ask a Question