Login or Register to Ask a Question and Join Our Community


UNIX for Dummies Questions & Answers

tcpwrapper issues

 
Thread Tools Search this Thread
Top Forums UNIX for Dummies Questions & Answers tcpwrapper issues
# 1  
Old 12-13-2002
tcpwrapper issues
hi, i am on solaris and on a hostname ORASA. i have problems with tcpwrapper... i add the following entry to hosts.deny (ALL:ALL) and then a kill -HUP <pid of inetd>

then i log in to a host, SAPOR. from here, i telnet to ORASA. if tcpwrapper is working correctly, i should not be able to log in right?

what is wrong?

thanks
yls177
# 2  
Old 12-13-2002
your hosts.allow file should be empty ie should have no entry in it and hosts.deny file will have
ALL: ALL

Note this will disallow all telnet, ftp session
and the only way you will be to logon is at the console or through ssh if ssh is installed

Finally, you need tcpd entry in your /etc/inetd.conf, tcpd is ussually live in /usr/local/bin/tcpd but could be different in your
machine

for example
To enable your machine to use tcpwapper for telnet
session you need this entry in /etc/inetd.conf

telnet stream tcp6 nowait root /usr/local/bin/tcpd in.telnetd

After changes has been made to /etc/inetd.conf
issue kill -HUP (inetd pid)
# 3  
Old 12-15-2002
what if i want to allow only ip 111.222.333.4 telnet services only?

is it i type ALL:ALL for hosts.deny and telnet:111.222.333.4 for hosts.allow?

thanks
yls177
# 4  
Old 12-15-2002
success!!
http://www.cert.org/security-improve...s/i041.07.html

download from here.

3) edit the Makefile which is in your unpacked files directory
3.1) add CC=/usr/loca/bin/gcc
3.2) comment REAL_DAEMON_DIR=/usr/libexec
3.3) u need either gcc or cc compiler!
4) make sunos5 (different OS matters here)
4.1) enter make to get a list of available OS
5) after a successful make, copy the programs as belows
$ cp tcpd /usr/sbin

$ cp safe_finger /usr/sbin

$ cp tcpdchk /usr/sbin

$ cp tcpdmatch /usr/sbin

$ cp try-from /usr/sbin

$ cp hosts_access.3 /usr/man/man3

$ cp hosts_access.5 /usr/man/man5

$ cp hosts_options.5 /usr/man/man5

$ cp tcpd.8 /usr/man/man8

$ cp tcpdchk.8 /usr/man/man8

$ cp tcpdmatch.8 /usr/man/man8

6) edit
6.1) hosts.allow (this is from saetra, the new Sun server)
#ALL : ALL
ALL : 127.0.0.1
in.telnetd : list of ips

in.ftpd : list of ips
6.2) hosts.deny
ALL:ALL
7) tcpdchk , tcpdmatch to check the configuration of the files.
7.1) tcpdchk -- to check the entires in the two files
7.2) tcpdmatch - to check the services and the host
example : tcpdmatch in.telnetd list of ips
8) kill -HUP <pid of inetd>
yls177
 
Login or Register to Ask a Question

Previous Thread | Next Thread

9 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

Function Issues

I am converting English letters/words/punctuation in leet speak. My current script works just fine, but when I call the functions it seem to be bypassing my second function altogether. I am new to shell scripting so excuse me if its an easy fix. Also, when using SED for whole word phrases like... (4 Replies)
Discussion started by: bri09
4 Replies

2. Shell Programming and Scripting

Issues when dividing

Hi, I do have a very simple task to divide 2 variables and display the result. I CANNOT use bc when i try var1=2 var2=4 var3=$(($var1 / $var2)) echo $var3 the output is always 0 What can I change to get a dotted decimal result such as 0.5 ? Thanks! (5 Replies)
Discussion started by: svetoslav_sj
5 Replies

3. Emergency UNIX and Linux Support

rm -rf issues

We are using the solaris server and if i am using rm -rf to delete the directories its asking the confirmation for each and every file inside the directory.Is there any way to disable ( should not ask the confirmation) only for a particular session? (12 Replies)
Discussion started by: sureshbabuc
12 Replies

4. Shell Programming and Scripting

Issues with Expect

Here is a snippet of code that work for me: expect "abc" {send_log "abc found" } \ "def" {send_log "def found" } \ "123" {send_log "123 found} however the following does not and according to the book "Exploring Expect" it should be equivalent: expect { "abc"... (1 Reply)
Discussion started by: twk
1 Replies

5. AIX

lpstat issues

Hi, I tried to migrate a server, I installed AIX on a new server and I want to configure the printer queues. I copied all of files from the old server where the printer queues are working fine. I followed these steps: 1. copy the /etc/qconfig (make a copy of the original before) 2. Copy the... (10 Replies)
Discussion started by: imad77
10 Replies

6. Shell Programming and Scripting

Issues with grep -w

I am trying to use grep -w something as shown below. grep -w "$a" $LOG1 It is not giving me neither any error nor any data. I am facing the issue while i run this command inside a script. But i am getting the data if i run the above command outiside the script. here $a=08/11/2009 21 i... (13 Replies)
Discussion started by: rdhanek
13 Replies

7. Solaris

Issues with ldd

I tried to compile php and integrate it into apache on solaris. It compiled ok and I created a package. If I install it on a system that has the libpng from sunfreeware, it wants to use that library instead of the system SUNWpng. It doesn't run using SMCpng, but it runs using the system SUNWpng.... (4 Replies)
Discussion started by: Mike_the_Man
4 Replies

8. Shell Programming and Scripting

while loop issues

Hi guys, Been sifting through these forums for awhile, but never had an account or needed to post. Shoutouts to a great forum with heaps of useful info. Now i consider myself a noob when it comes to linux and to bash scripting. I recently started to learn to use Vmware ESX server which uses... (4 Replies)
Discussion started by: ryath
4 Replies

9. Shell Programming and Scripting

SU issues

Hi, I have automated a build process that does the following activities. 1. check out code from cvs to a specific directory 2. build the revision checked out with 'ANT' 3. integrate the compiled code with the QA/UAT or new environment (/apps/QA or /apps/UAT or /apps/new directory) I... (1 Reply)
Discussion started by: yoi2hot4ya
1 Replies
Login or Register to Ask a Question