topic Re: Securing /var/adm/inetd.sec ? Help!!! in Operating System - HP-UX

Securing /var/adm/inetd.sec ? Help!!!

Daniel Simard — Mon, 02 Jun 2003 14:30:59 GMT

Hi!,
I was wondering if you can help me secure my inetd.sec file. I have already remmed many entries but am not sure about some. If you have a good site that would go through some entries as an example, I would appreciate it.

here is a copy of my inetd.sec. for example, what is kitty ???

dtspc allow 127.0.0.1 kitty
spc allow 127.0.0.1 training
mserve allow 127.0.0.1 training
auth allow 127.0.0.1
telnet allow 172.* 192.168.1-6.*
instl_boots deny
shell allow 172.*
auth allow 172.*
cmsd allow 172.*
ttdbserver allow 172.*
recserv deny
discard allow 172.*
echo allow 172.*
exec allow 172.20.*
login allow 172.*

# chargen allow 172.*
# daytime allow 172.*
# discard stream tcp nowait root internal
# printer allow 172.*
# ntalk allow 172.*
# time allow 172.*

Any help is very much appreciated!!! THANKS

Re: Securing /var/adm/inetd.sec ? Help!!!

Paul Sperry — Mon, 02 Jun 2003 15:07:32 GMT

kitty is a hostname.

in my initd.sec

dtspc allow 127.0.0.1 loopback mantis

mantis is the local host

Re: Securing /var/adm/inetd.sec ? Help!!!

S.K. Chan — Mon, 02 Jun 2003 15:41:24 GMT

What you can do is only allow the services you needed. For example I do not need "ttdbserver" thus I have this entry commented. The rest of your entries are enabled on my machine. I would also recommend (if possible) narrow down your IP address wilcard matching. For example ..
..
login allow 127.0.0.1 172.xyx.* 172.abc.*
..
Getting more specific would give you more control.