08-20-2008
The easiest, portable way is to use the tcpd/tcp_wrappers library by Wietse Venema. With this, /etc/services does not contain the telnetd program directly, but a line that invokes the program "tcpd" which in turn checks the files /etc/hosts.allow and /etc/hosts.deny. In these files, you can set policies however you desire (per process, per user, per source host).
Do a man on hosts_access (5).
10 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
How do you keep users from logging on while you do file maintenance? Is there a way to temporarily disable telnet? (2 Replies)
Discussion started by: michieka
2 Replies
2. UNIX for Dummies Questions & Answers
how do i disable the telnet (2 Replies)
Discussion started by: rmuhammad
2 Replies
3. Solaris
I am running solaris 9.. currently has telnet / ssh access..
Initially I just want to stop telnet access (but leave ftp open as some scripts etc still using this and need modification)
As far as I know I just need to do the following:
edit the /etc/inetd.conf file and comment out:
telnet ... (2 Replies)
Discussion started by: frustrated1
2 Replies
4. SCO
Hy,
Coud someone tell me how to disable root login via terminal (only from console should be allowed).
There is no ssh installed, only telnet.
I created a user which will have permission to su to root, but now i don't know where and what to modify to disable root login?
SCO OpenServer 5
... (1 Reply)
Discussion started by: veccinho
1 Replies
5. AIX
Hello!
I'm going through security checklist for AIX 5.3 and i just can't disable remote login for root through ssh.
What i did:
- in /etc/security/user i added a line:
rlogin = false
which works fine when i try to login through telnet
- after installation of openSSH i edited... (3 Replies)
Discussion started by: veccinho
3 Replies
6. SCO
dear all,
pls give the sollution to disable root login from telnet directly.but it should allow while we type su command (2 Replies)
Discussion started by: prakrithi
2 Replies
7. Solaris
Hi to All,
I have configured telnet service in my server but am not able to login with root user in Linux Servers.
For that what can i do ?
Please help me
Thanks in Advance. (1 Reply)
Discussion started by: Sharath Kumar
1 Replies
8. UNIX for Dummies Questions & Answers
we don't have root in our /etc/ftpd/ftpusers and we are getting some pushback from the external auditors about this - specifically as a security risk if a "sniffer" were to catch roots password at the ftp.
What do most shops do - disable ftp for root?
What do you do to get things to the... (3 Replies)
Discussion started by: LisaS
3 Replies
9. OS X (Apple)
Ok guys,
I'm just getting back to this amongst several other projects, but I thought I'd re-address it. I'm creating the script to disable windows from the previous login under 10.7. In order to do this it seems I need to create the same script for applications that launch and create the... (6 Replies)
Discussion started by: unimachead
6 Replies
10. UNIX for Advanced & Expert Users
Hi,
As part of the security hardening activity in our team, we have to disable CBC mode cipher encryption, and enable CTR or GCM cipher mode encryption.
To do this, in sshd_config I comment out these lines :
Ciphers aes128-cbc,blowfish-cbc,3des-cbc
MACS hmac-sha1,hmac-md5
and add... (9 Replies)
Discussion started by: anaigini45
9 Replies
LEARN ABOUT DEBIAN
fence_rsb
fence_rsb(8) System Manager's Manual fence_rsb(8)
NAME
fence_rsb - I/O Fencing agent for Fujitsu-Siemens RSB
SYNOPSIS
fence_rsb [OPTION]...
DESCRIPTION
fence_rsb is an I/O Fencing agent which can be used with the Fujitsu-Siemens RSB management interface. It logs into an RSB device via tel-
net and reboots the associated machine. Lengthy telnet connections to the RSB device should be avoided while a GFS cluster is running
because the connection will block any necessary fencing actions.
fence_rsb accepts options on the command line as well as from stdin. Fenced sends parameters through stdin when it execs the agent.
fence_rsb can be run by itself with command line options. This is useful for testing.
Vendor URL: http://www.fujitsu.com
OPTIONS
-a IPaddress
IP address or hostname of the RSB device.
-h Print out a help message describing available options, then exit.
-l login
Login name.
-n telnet_port
The port number on which the telnet service listens.
-o action
The action required. This can be reboot (default), off, on, or status.
-p password
Password for login.
-S path
Full path to an executable to generate the password for login.
-v Verbose. Print informational messages to standard out.
-V Print out a version message, then exit.
STDIN PARAMETERS
agent = < param >
This option is used by fence_node(8) and is ignored by fence_rsb.
ipaddr = < hostname | ip >
IP address or hostname of the device.
telnet_port = < port number >
The port number on which the telnet service listens.
login = < param >
Login name.
option = < param >
The action required. This can be reboot (default), off, on, or status.
passwd = < param >
Password for login.
passwd_script = < param >
Full path to an executable to generate the password for login.
SEE ALSO
fence(8), fence_node(8)
fence_rsb(8)