06-23-2008
behaviour by design
hi. this is behaviour by design in the server machine. What's happening is that the sun server that is not letting you in has a /etc/hosts.allow (and/or a /etc/hosts.deny) file that specifies rules telling it whether it should let a connection in depending on the connecting user/hosts/domain/network etc...
Normally, hosts.allow and hosts.deny are only checked when a program calls hosts_access(). By default, sshd and other programs do check the files, but not daemons like in.telnetd and ftpd, because these are services handled by inetd and by default inetd doesn't have tcp_wrappers on. The sysadmin must have enabled tcp_wrappers to telnet or to the whole of inetd, and thus each connection gets run through the /etc/hosts.allow and /etc/hosts.deny ruleset.
If you have a domain name change, maybe you are no longer making it through the rules in /etc/hosts.allow and /etc/hosts.deny so just update those.
10 More Discussions You Might Find Interesting
1. IP Networking
I tried to telnet to my Sun server (E250) but I received the error message :
"Network error: Connection reset by peer".
I was able to ping my server. And, I had already commented off "CONSOLE=/dev/console" in /etc/default/login.
But, if I rlogin from all other servers, it works.
Is there... (2 Replies)
Discussion started by: dawn_lwf
2 Replies
2. UNIX for Dummies Questions & Answers
:cool: I need some assistance please. I'm setting up a SunOS 5.6 server and sofar I'm able to telnet into the unit but unable to telnet from it. Can anyone help me with this problem. When attempting to telnet from my SunOs to client
terminal I'm receving the following error, "Unable to connect to... (3 Replies)
Discussion started by: sharris82
3 Replies
3. HP-UX
Hi friend,
I'm facing a problem to access the console and telnet to the HP ux 11 server due to the system file is full. How to access this server via single mode and how to mount the folder / and folder /var?
thanks.
vestro (1 Reply)
Discussion started by: vestro
1 Replies
4. AIX
Hi,
I encountered error when I telnet to my server.
Error is as follows:
telnetd: /bin/login: The file access permissions do not allow the specified action
I am able to ssh into my server and I have checked/verified /etc/security and /etc/inetd.conf. I restarted the inetd subsystem via... (1 Reply)
Discussion started by: chongkls77
1 Replies
5. UNIX for Dummies Questions & Answers
Dear All,
I have Compaq Alpha server running UNIX OS. with Old Hardware specification.
I had FTP conncetion using IP Switch ( FTP client ) to the Unix server in order to copy some files to my workstation. one day after closing the connection we noted that IT operations are not able to... (8 Replies)
Discussion started by: Arehan
8 Replies
6. SuSE
Hi forum,
I face a strange issue. I'm able to telnet as root with ssh.
But I'm not able to telnet (non-ssh) as root to my Suse 10 machine.
Can someone please point to significant files where I need to make changes for Suse 10 machine and resolve this issue.
Thanks in advance. (2 Replies)
Discussion started by: anilgurwara
2 Replies
7. UNIX for Dummies Questions & Answers
Hi,
I have two linux boxes and due to some reasons I have reinstalled OS in one of them. Now Iam unable to telnet one of them. I have included entries in /etc/hosts in both and Iam able to ping each other.
Am I missing anything here or I we need to install/activate telnet server ?
Thanks... (2 Replies)
Discussion started by: ssuhaib
2 Replies
8. Shell Programming and Scripting
Hello people, I am creating a script that will alert me in an ftp or telnet account on my system expires. FTP part is ok, but when I am entering the 3 script, it stucks. I can see that the script will not close the telnet seession. Can you please check and let me know what I am doing wrong? What if... (7 Replies)
Discussion started by: drbiloukos
7 Replies
9. Solaris
Hello. I Need Some Help.
I'm trying to telnet the IMAP port (to verify if is open).
telnet myserver 143, but im getting this error: Connection closed by foreign host.
The /var/log/syslog shows me following:
imapd: error: cannot execute /usr/sbin/imapd: No such file or directory
netstat... (3 Replies)
Discussion started by: rcruz
3 Replies
10. Shell Programming and Scripting
i have to connect windows server from one of the unix box so i am using telnet and below is my following code
#!/bin/sh
host=hostname
log=loginid
port=23
pass=password
cmd1=mkdir test1234
( echo open ${host} ${port}
sleep 1
echo ${log}
sleep 3
echo "\r\n"
sleep 3
echo ${pass}... (11 Replies)
Discussion started by: chandan.p
11 Replies
LEARN ABOUT OPENSOLARIS
tcpdmatch
TCPDMATCH(1M) TCPDMATCH(1M)
NAME
tcpdmatch - tcp wrapper oracle
SYNOPSYS
tcpdmatch [-d] [-i inet_conf] daemon client
tcpdmatch [-d] [-i inet_conf] daemon[@server] [user@]client
DESCRIPTION
tcpdmatch predicts how the tcp wrapper would handle a specific request for service. Examples are given below.
The program examines the tcpd access control tables (default /etc/hosts.allow and /etc/hosts.deny) and prints its conclusion. For maximal
accuracy, it extracts additional information from your inetd network configuration file.
When tcpdmatch finds a match in the access control tables, it identifies the matched rule. In addition, it displays the optional shell com-
mands or options in a pretty-printed format; this makes it easier for you to spot any discrepancies between what you want and what the pro-
gram understands.
ARGUMENTS
The following two arguments are always required:
daemon A daemon process name. Typically, the last component of a daemon executable pathname.
client A host name or network address, or one of the `unknown' or `paranoid' wildcard patterns.
When a client host name is specified, tcpdmatch gives a prediction for each address listed for that client.
When a client address is specified, tcpdmatch predicts what tcpd would do when client name lookup fails.
Optional information specified with the daemon@server form:
server A host name or network address, or one of the `unknown' or `paranoid' wildcard patterns. The default server name is `unknown'.
Optional information specified with the user@client form:
user A client user identifier. Typically, a login name or a numeric userid. The default user name is `unknown'.
OPTIONS
-d Examine hosts.allow and hosts.deny files in the current directory instead of the default ones.
-i inet_conf
Specify this option when tcpdmatch is unable to find your inetd.conf network configuration file, or when you suspect that the pro-
gram uses the wrong one.
EXAMPLES
To predict how tcpd would handle a telnet request from the local system:
tcpdmatch in.telnetd localhost
The same request, pretending that hostname lookup failed:
tcpdmatch in.telnetd 127.0.0.1
To predict what tcpd would do when the client name does not match the client address:
tcpdmatch in.telnetd paranoid
On some systems, daemon names have no `in.' prefix, or tcpdmatch may need some help to locate the inetd configuration file.
FILES
The default locations of the tcpd access control tables are:
/etc/hosts.allow
/etc/hosts.deny
SEE ALSO
tcpdchk(1M), tcpd configuration checker
hosts_access(4), format of the tcpd access control tables.
hosts_options(4), format of the language extensions.
inetd.conf(4), format of the inetd control file.
inetd(1M), how to invoke tcpd from inetd using the libwrap library.
inetadm(1M), managing inetd services in the Service Management Framework.
AUTHORS
Wietse Venema (wietse@wzv.win.tue.nl),
Department of Mathematics and Computing Science,
Eindhoven University of Technology
Den Dolech 2, P.O. Box 513,
5600 MB Eindhoven, The Netherlands
ATTRIBUTES
See attributes(5) for descriptions of the following attributes:
+--------------------+-----------------+
| ATTRIBUTE TYPE | ATTRIBUTE VALUE |
+--------------------+-----------------+
|Availability | SUNWtcpd |
+--------------------+-----------------+
|Interface Stability | Committed |
+--------------------+-----------------+
NOTES
Source for tcp_wrappers is available in the SUNWtcpdS package.
TCPDMATCH(1M)