08-04-2008
TCP wrappers
With things installed and wrapping ftpd on AIX 5.1 in hosts.deny I have;
ALL: ALL
in hosts.allow;
ftpd: x.x.x.x
ALL: x.x.x.x
I get this on connect via ftp;
421 Service not available, remote server has closed connection
So its working as far as blocking but the hosts.allow seems to be ignored, if I remove the ALL: ALL from hosts.deny I can ftp in from anywhere. Has anyone got an idea?
Thanks.
Just noticed, refused connect from 0.0.0.0 in my logs, ok thats wierd...
Last edited by traken; 08-04-2008 at 11:44 AM..
Reason: Update issue.
10 More Discussions You Might Find Interesting
1. Cybersecurity
!HELLO ,
What is the maximum number of hosts on a TCP/IP internet?
plz can u help me.
:rolleyes: (2 Replies)
Discussion started by: smdakram
2 Replies
2. Cybersecurity
I have installed TCP wrappers , Good package ...
I have a problem with the hosts_options part ...
I am not able to use the twist command .. It just dosent respond
I have compiled wrappers 7.6 for Solaris 8 with ipv6 support ...
Everything works fine except the twist doesnt work
I have... (1 Reply)
Discussion started by: DPAI
1 Replies
3. IP Networking
I have written a TCP/IP client and server program. The client sends a message to the server and then the server sends a file back to the client. The client reads the buffer and stores it another file in the client side.
I need to know what are the various exceptions that I need to handle in... (0 Replies)
Discussion started by: Rajeshsu
0 Replies
4. Solaris
I want to log tcp-wrapper events Solaris 10. I researched and saw that I could make a syslog entry in the hosts.deny, which I did below. After restarting syslog and having ssh blocking, I see nothing logging. I also do not get the email that should be generated. The file was taken from a... (2 Replies)
Discussion started by: csgonan
2 Replies
5. Solaris
has anyone ever tried using a client list in thier hosts.allow file
Example of hosts.allow) in.ftpd: /etc/ftp.hosts
"ftp.hosts" has my list of IP address that are allow access....
However I cant get this work...Any Comments or Help? (0 Replies)
Discussion started by: dodge_man
0 Replies
6. AIX
Hi All,
Any idea what is the security wrappers on AIX 5.3?
Any idea will be highly appreciated, thanks. (1 Reply)
Discussion started by: itik
1 Replies
7. UNIX for Advanced & Expert Users
I'm using vsftpd which is being controlled by inetd.
I have a user that I want to only be able to connect from one specific IP address on the same internal network so I can backup files on a separate system.
Is this possible with TCP wrappers? I got the notion that it was because of a few... (4 Replies)
Discussion started by: mashiox
4 Replies
8. AIX
hi all
just installed the netsec.options.tcpwrapper from expansion pack, which used to be a rpm, for my aix 6.1 test box.
it is so unpredictable. i set up the hosts.deny as suggested for all and allow the sshd for specific ip addresses/hostnames.
the tcpdchk says the hosts allowed and... (0 Replies)
Discussion started by: wf201626
0 Replies
9. AIX
Hi,
I have in my organization varied OS types (AIX,RHEL,Solaris)
My need was to block ftp connections from some addresses on my organization,
but to not disable the protocol.
In the linux servers i did that with the hosts.deny file that used by the vsftpd deamon.
In my AIX servers, i have... (6 Replies)
Discussion started by: moshesa
6 Replies
10. Solaris
I have problem with oracle solaris 10 running on oracle sparc T4-2 server.
Os information: 5.10 Generic_150400-03 sun4v sparc sun4v
Output from tcpstat.d script
TCP bytes: out outRetrans in inDup inUnorder
6833763 7300 98884 0... (2 Replies)
Discussion started by: insatiable1610
2 Replies
LEARN ABOUT HPUX
ftphosts
ftphosts(4) Kernel Interfaces Manual ftphosts(4)
NAME
ftphosts - ftpd individual user host access file
SYNOPSIS
DESCRIPTION
The file is used to allow or deny access to certain accounts from various hosts.
Access Capabilities
The formats to allow and deny access are described in this section.
addrglob [ addrglob... ]
Only allow host(s) matching addrglob to log in as username. addrglob is a globbed domain name or a globbed numeric address.
addrglob [ addrglob ... ]
Always deny host(s) matching addrglob to log in as username. addrglob is a globbed domain name or a globbed numeric address.
A username of or specifies the anonymous user.
The addrglob can also be specified as address/cidr or address:netmask. For example:
or
Specifying Both allow and deny Rules
To allow a user to login from anywhere except the listed hosts, both allow and deny rules are required.
The following example denies the user from logging in from the host but allows login from all other hosts:
EXAMPLES
Allow the user, to login from the host named and from all hosts with numeric addresses starting with
Deny (do not allow) the user, to login from the host named and from all hosts with numeric addresses starting with
Allow the user, to login from the host named
FILES
AUTHOR
was developed by the Washington University, St. Louis, Missouri.
SEE ALSO
ftpd(1M), ftpaccess(4), ftpconversions(4), ftpshut(1).
ftphosts(4)