topic Re: permission for ftp and telnet in Operating System - HP-UX

permission for ftp and telnet

khilari — Mon, 22 Jun 2009 04:10:46 GMT

Hi guys, just wondering how do u disable ftp and telnet for root but let it stay up for other users.....

Re: permission for ftp and telnet

Jeeshan — Mon, 22 Jun 2009 04:16:18 GMT

you can set rule set using inetd.sec.

Re: permission for ftp and telnet

Vivek Bhatia — Mon, 22 Jun 2009 04:26:52 GMT

Hi Khilari,

1. If you want to block the ftp for root.

Edit the file "/etc/ftpd/ftpusers" and add root in this file to block ftp from root on the server.

2. Disable telnet for root.
Edit the file below.

# cat /etc/securetty
console

That will prevent root logging in directly from anywhere but the console. It will allow you to log in via telnet as a regular user and, if you know the root password, do a 'su -' to get to root.

Regards,
Vivek

Re: permission for ftp and telnet

Suraj K Sankari — Mon, 22 Jun 2009 04:33:36 GMT

HI,
/etc/ftpd/ftpusers on HP-UX 11.x contains a list of users who are not allowed to access the system via FTP.
if you open this file and add a line root then root user is not able to FTP.
# more /etc/ftpd/ftpusers
root

For telnet you can use inetd.sec
inetd.sec is a file that can be used to restict access of inetd services (ftp, telnet etc) to particular networks. The
file is found at /var/adm/inetd.sec.

Suraj

Re: permission for ftp and telnet

Avinash20 — Mon, 22 Jun 2009 04:47:25 GMT

Yes, there is. Create a file called /etc/securetty and put the word console in it.

# cat /etc/securetty
console

That will prevent root logging in directly from anywhere but the console. It will allow you to log in via telnet as a regular user and, if you know the root password, do a 'su -' to get to root.

PS: Assign points if you find the appropriate answers