Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: TCP Wrappers
Special Forums Cybersecurity TCP Wrappers Post 19105 by DPAI on Friday 5th of April 2002 04:29:38 PM
Old 04-05-2002
I got it .
I did not compile with the -DPROCESS_OPTIONS

DP
 

10 More Discussions You Might Find Interesting

1. Cybersecurity

Tcp/ip

!HELLO , What is the maximum number of hosts on a TCP/IP internet? plz can u help me. :rolleyes: (2 Replies)
Discussion started by: smdakram
2 Replies

2. IP Networking

Tcp\ip

I have written a TCP/IP client and server program. The client sends a message to the server and then the server sends a file back to the client. The client reads the buffer and stores it another file in the client side. I need to know what are the various exceptions that I need to handle in... (0 Replies)
Discussion started by: Rajeshsu
0 Replies

3. Solaris

logging solaris 10 tcp-wrappers

I want to log tcp-wrapper events Solaris 10. I researched and saw that I could make a syslog entry in the hosts.deny, which I did below. After restarting syslog and having ssh blocking, I see nothing logging. I also do not get the email that should be generated. The file was taken from a... (2 Replies)
Discussion started by: csgonan
2 Replies

4. Solaris

TCP Wrappers - again

has anyone ever tried using a client list in thier hosts.allow file Example of hosts.allow) in.ftpd: /etc/ftp.hosts "ftp.hosts" has my list of IP address that are allow access.... However I cant get this work...Any Comments or Help? (0 Replies)
Discussion started by: dodge_man
0 Replies

5. AIX

TCP wrappers

With things installed and wrapping ftpd on AIX 5.1 in hosts.deny I have; ALL: ALL in hosts.allow; ftpd: x.x.x.x ALL: x.x.x.x I get this on connect via ftp; 421 Service not available, remote server has closed connection So its working as far as blocking but the hosts.allow seems to be... (1 Reply)
Discussion started by: traken
1 Replies

6. AIX

security wrappers

Hi All, Any idea what is the security wrappers on AIX 5.3? Any idea will be highly appreciated, thanks. (1 Reply)
Discussion started by: itik
1 Replies

7. UNIX for Advanced & Expert Users

TCP Wrappers and restricting users

I'm using vsftpd which is being controlled by inetd. I have a user that I want to only be able to connect from one specific IP address on the same internal network so I can backup files on a separate system. Is this possible with TCP wrappers? I got the notion that it was because of a few... (4 Replies)
Discussion started by: mashiox
4 Replies

8. AIX

aix tcp wrappers hosts.allow hosts.deny?

hi all just installed the netsec.options.tcpwrapper from expansion pack, which used to be a rpm, for my aix 6.1 test box. it is so unpredictable. i set up the hosts.deny as suggested for all and allow the sshd for specific ip addresses/hostnames. the tcpdchk says the hosts allowed and... (0 Replies)
Discussion started by: wf201626
0 Replies

9. AIX

TCP Wrappers on AIX 5.3

Hi, I have in my organization varied OS types (AIX,RHEL,Solaris) My need was to block ftp connections from some addresses on my organization, but to not disable the protocol. In the linux servers i did that with the hosts.deny file that used by the vsftpd deamon. In my AIX servers, i have... (6 Replies)
Discussion started by: moshesa
6 Replies

10. Solaris

Too much TCP retransmitted and TCP duplicate on server Oracle Solaris 10

I have problem with oracle solaris 10 running on oracle sparc T4-2 server. Os information: 5.10 Generic_150400-03 sun4v sparc sun4v Output from tcpstat.d script TCP bytes: out outRetrans in inDup inUnorder 6833763 7300 98884 0... (2 Replies)
Discussion started by: insatiable1610
2 Replies

LEARN ABOUT POSIX

rpcbind

rpcbind(1M)						  System Administration Commands					       rpcbind(1M)

NAME

       rpcbind - universal addresses to RPC program number mapper

SYNOPSIS

       rpcbind [-d] [-w]

DESCRIPTION

       rpcbind is a server that converts RPC program numbers into universal addresses. It must be running on the host to be able to make RPC calls
       on a server on that machine.

       When an RPC service is started, it tells rpcbind the address at which it is listening, and the RPC program numbers it is prepared to serve.
       When  a	client	wishes	to  make  an  RPC call to a given program number, it first contacts rpcbind on the server machine to determine the
       address where RPC requests should be sent.

       rpcbind should be started before any other RPC service. Normally, standard RPC servers are started by port monitors,  so  rpcbind  must	be
       started before port monitors are invoked.

       When  rpcbind is started, it checks that certain name-to-address translation-calls function correctly. If they fail, the network configura-
       tion databases can be corrupt. Since RPC services cannot function correctly in this situation, rpcbind reports  the  condition  and  termi-
       nates.

       rpcbind maintains an open transport end for each transport that it uses for indirect calls. This is the UDP port on most systems.

       rpcbind can only be started by the superuser.

       The FMRI svc:network/rpc/bind property group config contains the following property settings:

       enable_tcpwrappers

	   Specifies  that the TCP wrappers facility is used to control access to TCP services. The value true enables checking. The default value
	   for enable_tcpwrappers is false.  If the enable_tcpwrappers parameter is enabled, then all calls to rpcbind originating from  non-local
	   addresses  are  automatically  wrapped by the TCP wrappers facility. The syslog facility code daemon is used to log allowed connections
	   (using the info severity level) and denied traffic (using the warning severity level). See syslog.conf(4) for a description	of  syslog
	   codes  and severity levels.	The stability level of the TCP wrappers facility and its configuration files is External. As the TCP wrap-
	   pers facility is not controlled by Sun, intrarelease incompatibilities are not uncommon. See attributes(5).

       verbose_logging

	   Specifies whether the TCP wrappers facility logs all calls orjust the denied calls. The default is false. This option has no effect	if
	   TCP wrappers are not enabled.

       allow_indirect

	   Specifies whether rpcbind allows indirect calls at all.  By default, rpcbind allows most indirect calls, except to a number of standard
	   services(keyserv, automount, mount, nfs, rquota, and selected NIS and rpcbind procedures). Setting allow_indirect to false  causes  all
	   indirect calls to be dropped. The default is true. NIS broadcast clients rely on this functionality on NIS servers.

OPTIONS

       The following options are supported:

       -d	Run  in  debug	mode.  In  this mode, rpcbind does not fork when it starts. It prints additional information during operation, and
		aborts on certain errors. With this option, the name-to-address translation consistency checks are shown in detail.

       -w	Do a warm start.  If rpcbind aborts or terminates on SIGINT or SIGTERM, it writes the  current	list  of  registered  services	to
		/var/run/portmap.file  and  /var/run/rpcbind.file.   Starting  rpcbind with the -w option instructs it to look for these files and
		start operation with the registrations found in them. This allows rpcbind to resume operation without requiring all  RPC  services
		to be restarted.

FILES

       /var/run/portmap.file   Stores the information for RPC services registered over IP based transports for warm start purposes.

       /var/run/rpcbind.file   Stores the information for all registered RPC services for warm start purposes.

ATTRIBUTES

       See attributes(5) for descriptions of the following attributes:

       +-----------------------------+-----------------------------+
       |      ATTRIBUTE TYPE	     |	    ATTRIBUTE VALUE	   |
       +-----------------------------+-----------------------------+
       |Availability		     |SUNWcsu			   |
       +-----------------------------+-----------------------------+
       |Interface Stability	     |See below.		   |
       +-----------------------------+-----------------------------+

       TCP wrappers is External.

SEE ALSO

       smf(5), rpcinfo(1M), svcadm(1M), svccfg(1M), rpcbind(3NSL), syslog.conf(4), attributes(5), smf(5)

       For  information  on the TCP wrappers facility, see the hosts_access(4) man page, delivered as part of the Solaris operating environment in
       /usr/sfw/man and available in the SUNWtcpd package.

NOTES

       Terminating rpcbind with SIGKILL prevents the warm-start files from being written.

       All RPC servers are restarted if the following occurs: rpcbind crashes (or is killed with SIGKILL) and is unable to to write the warm-start
       files; rpcbind is started without the -w option after a graceful termination. Or, the warm start files are not found by rpcbind.

       The rpcbind service is managed by the service management facility, smf(5), under the service identifier

       svc:/network/rpc/bind

       Administrative actions on this service, such as enabling, disabling, or requesting restart, can be performed using svcadm(1M).

       The configuration properties of this service can be modified with svccfg(1M).

SunOS 5.10							    29 Oct 2004 						       rpcbind(1M)
All times are GMT -4. The time now is 09:36 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy