Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: bootp/tftp
Top Forums UNIX for Dummies Questions & Answers bootp/tftp Post 16903 by killerserv on Friday 8th of March 2002 06:51:45 AM
Old 03-08-2002
BOOTP and TFTP offer almost no security whatsoever. (What they do )They basically provide their information to anybody who asks and solely rely on the assumption that your network is configured to not make the server world-accessable. If you install BOOTP gateways, then this assumption is seriously violated. Also, TFTP server are usually accessible from just about everywhere. You can try to dimish the impact of this problem by blocking BOOTP and TFTP packes from leaving or entering your network segment, but this will never be a completely secure solution.

Thus you should always assume that all of the files that your BOOTP and TFTP server offer are world readable. They must not contain any sensitive data. Also, the TFTP daemon must be configured to only allow access to selected files. Running it in a chroot'd environment might be a very good idea.

The BOOTP protocol is vulnerable against somebody else impersonating as a BOOTP server. While security aware operating systems, prevent non-priviledged users from starting their own BOOTP servers, other operating systems do not allow this. This means, if any of your users can launch an arbitrary program under an insecure operating system on an arbitrary machine connected to your ethernet segment, then they have full control over the BOOTP boot process.

Hope you understand what BOOTP/TFTP do..
 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

TFTP setup

ok, I configured inetd.conf so that the tftp string is not commented out, but I cannot get the process to start. I'm running Solaris 5.8 and need some help. Cabletron said that it's process is 3485, i tried to kill it, it's the wrong process. I started inetd again and still can't kill it. i... (15 Replies)
Discussion started by: veitcha
15 Replies

2. UNIX for Dummies Questions & Answers

Network Install PXE/BootP/TFTP

Im trying to help my professor at school, were trying to setup a linux server, that is configured with bootp/tftp/PXE. the client computer NICs have support to boot off PXE. What we would like to do is if a client computer does not have an OS, it would boot off the server, and display a menu to the... (1 Reply)
Discussion started by: kwalick
1 Replies

3. UNIX for Dummies Questions & Answers

Tftp

Is it possible to copy files between two computers with TFTP.And how? (1 Reply)
Discussion started by: bericica
1 Replies

4. Linux

BOOTP on HP Thin clients

Please m new around here! Can anyone take me thru implementing bootp on my thin clients via my central server? Preciate ur assistance. Thanks folks! (2 Replies)
Discussion started by: chuk_uka
2 Replies

5. UNIX for Dummies Questions & Answers

enabling TFTP

ive been trying to enable a tftp service on a unix box using the command atftpd --daemon but when i scan the open ports using nmap it doesnt show that port 21 as up does anyone know the reason... ive tried /etc/init.d/atftpd start , it didnt work if i type atftpd by it self it gives me a set... (2 Replies)
Discussion started by: ratamahatta
2 Replies

6. SCO

Need help in BOOTP Server and Client configuration

Dear All; I need help in configuring the BOOTP server, I have found something on internet forums regarding the file: bootptab and editing some lines but Im not if they are all correct. Also, I need help to configure my clients (UNIX) to boot up with this bootp server(UNIX). I will be... (1 Reply)
Discussion started by: amirzandi
1 Replies

7. AIX

Building a 43p using BOOTP

I have a 43p 120 (7248-120) which I am trying to install AIX 5.2 on. I have built a Nimol server on a Linux PC running SUSE LES 10. I have setup the 43p to perfom a network boot (BOOTP) and all the addresses in the network settings under SMS are set to 0.0.0.0. When I power up the 43p it... (15 Replies)
Discussion started by: johnf
15 Replies

8. UNIX for Dummies Questions & Answers

tftp troubleshooting

Hi I am trying to do a network install of Solaris 10 08_07 onto a Sunfire T2000. I have configured all my network-boot-arguments on the client server (named sundb1). I have installed my image of Solaris on my install server (sun1). But when I try to install using # boot net -s I get the... (0 Replies)
Discussion started by: Bobby76
0 Replies

9. Linux

tftp will not start.

I have setup nimol on a Fedora 9 machine. Nimol is installed and correctly configured and I have a client rs6000 (43p) declared in the dhcpd.conf file. all is running correctly and tftp is installed. I am monitoring /var/log/messages when I start the 43p and see the dhcp request come in and a reply... (0 Replies)
Discussion started by: johnf
0 Replies

10. Solaris

Bootp/tftp issue neeeeeed help plz

i find a solution (2 Replies)
Discussion started by: shady_2005
2 Replies

LEARN ABOUT SUNOS

dhcpmgr

dhcpmgr(1M)						  System Administration Commands					       dhcpmgr(1M)

NAME

       dhcpmgr - graphical interface for managing DHCP service

SYNOPSIS

       /usr/sadm/admin/bin/dhcpmgr

DESCRIPTION

       dhcpmgr	is a graphical user interface which enables you to manage the Dynamic Host Configuration Protocol (DHCP) service on the local sys-
       tem. It performs the functions of the dhcpconfig, dhtadm, and pntadm command line utilities. You must be root to use dhcpmgr.  The  dhcpmgr
       Help, available from the Help menu, contains detailed information about using the tool.

USAGE

       You can perform the following tasks using dhcpmgr:

       Configure DHCP service

	   Use dhcpmgr to configure the DHCP daemon as a DHCP server, and select the data store to use for storing network configuration tables..

       Configure BOOTP relay service

	   Use dhcpmgr to configure the DHCP daemon as a BOOTP relay.

       Manage DHCP or BOOTP relay service

	   Use dhcpmgr to start, stop, enable, disable or unconfigure the DHCP service or BOOTP relay service, or change DHCP server parameters.

       Manage DHCP addresses

	   Use dhcpmgr to add, modify, or delete IP addresses leased by the DHCP service.

       Manage DHCP macros

	   Use dhcpmgr to add, modify or delete macros used to supply configuration parameters to DHCP clients.

       Manage DHCP options

	   Use dhcpmgr to add, modify or delete options used to define parameters deliverable through DHCP.

       Convert to a new DHCP data store

	   Use	dhcpmgr  to  configure the DHCP server to use a different data store, and convert the DHCP data to the format used by the new data
	   store.

       Move DHCP data to another server

	   Use dhcpmgr to export data from one Solaris DHCP server and import data onto another Solaris DHCP server.

EXIT STATUS

       The following exit values are returned:

       0	       Successful completion.

       non-zero        An error occurred.

ATTRIBUTES

       See attributes(5) for descriptions of the following attributes:

       +-----------------------------+-----------------------------+
       |      ATTRIBUTE TYPE	     |	    ATTRIBUTE VALUE	   |
       +-----------------------------+-----------------------------+
       |Availability		     |SUNWdhcm			   |
       +-----------------------------+-----------------------------+
       |Interface Stability	     |Evolving			   |
       +-----------------------------+-----------------------------+

SEE ALSO

       dhcpconfig(1M), dhtadm(1M), pntadm(1M), in.dhcpd(1M), dhcpsvc.conf(4), dhcp_network(4), dhcptab(4), attributes(5), dhcp(5), dhcp_modules(5)

       Solaris DHCP Service Developer's Guide

       System Administration Guide: IP Services

SunOS 5.10							    13 Mar 2001 						       dhcpmgr(1M)
All times are GMT -4. The time now is 05:52 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy