https://community.hpe.com/t5/operating-system-hp-ux/restrict-ftp-services/m-p/5148996#M454322 is there any procedure or command for restricting services for unauthorised access to the system...Thank you Tue, 06 Jan 2009 14:32:18 GMT unixadmin_1 2009-01-06T14:32:18Z https://community.hpe.com/t5/operating-system-hp-ux/restrict-ftp-services/m-p/5148992#M454318 The FTP service was active on the system. If powerful useraccounts are allowed to log on via FTP, the system resources and information are unnecessarily exposed to unauthorised access, tampering and damage. Passwords transmitted via FTP are sent in clear text, which increases the possibility of these passwords being intercepted and logged by “sniffer” software. The information thus obtained could then be used to gain unauthorised access to the system via other, less restrictive services. Tue, 06 Jan 2009 13:32:35 GMT https://community.hpe.com/t5/operating-system-hp-ux/restrict-ftp-services/m-p/5148992#M454318 unixadmin_1 2009-01-06T13:32:35Z https://community.hpe.com/t5/operating-system-hp-ux/restrict-ftp-services/m-p/5148993#M454319 If you have a question(s), would you please ask it (or them)? Re-stating accepted security practices doesn't really seem to accomplish much.<BR /><BR /><BR />Pete Tue, 06 Jan 2009 13:40:14 GMT https://community.hpe.com/t5/operating-system-hp-ux/restrict-ftp-services/m-p/5148993#M454319 Pete Randall 2009-01-06T13:40:14Z https://community.hpe.com/t5/operating-system-hp-ux/restrict-ftp-services/m-p/5148994#M454320 Hi,<BR /><BR />This case you should go far ssh with sftp and chroot configuration. Tue, 06 Jan 2009 13:44:45 GMT https://community.hpe.com/t5/operating-system-hp-ux/restrict-ftp-services/m-p/5148994#M454320 Ganesan R 2009-01-06T13:44:45Z https://community.hpe.com/t5/operating-system-hp-ux/restrict-ftp-services/m-p/5148995#M454321 to restrcit ftp access, u can use tcpwrapper. just mention the ip address allowed to make ftp to your server in /etc/hosts.allow and /etc/hosts.deny. to secure, disable ftp service in /etc/inetd.conf and ask user to use sftp service. Tue, 06 Jan 2009 13:46:20 GMT https://community.hpe.com/t5/operating-system-hp-ux/restrict-ftp-services/m-p/5148995#M454321 yulianto piyut 2009-01-06T13:46:20Z https://community.hpe.com/t5/operating-system-hp-ux/restrict-ftp-services/m-p/5148996#M454322 is there any procedure or command for restricting services for unauthorised access to the system...Thank you Tue, 06 Jan 2009 14:32:18 GMT https://community.hpe.com/t5/operating-system-hp-ux/restrict-ftp-services/m-p/5148996#M454322 unixadmin_1 2009-01-06T14:32:18Z https://community.hpe.com/t5/operating-system-hp-ux/restrict-ftp-services/m-p/5148997#M454323 &gt;&gt;is there any procedure or command for restricting services for unauthorised access to the system...Thank you&lt;&lt;<BR /><BR />That's why people now days do not use "ftp' service anymore, Due to securety issues,<BR /><BR />All Organisation adviced to use only "sftp" secured sftp service, by disabling the ftp and enabling "sftp" services.<BR /><BR />&gt;&gt;restricting services for unauthorised &lt;&lt;<BR /><BR />You follow with many ways.<BR /><BR />1. Creating "anoynums" ftp access only<BR />2. creating ftp.allow.file and ftp.deny.file<BR />3. blocking the ips by specify the ip address range in the /var/adm/inetd.sec<BR />Example:-<BR />ftp allow 192.168.1.1<BR />ftp deny 192.168.1.2<BR /><BR />(Most Recommended Action to avoid ftp and use sftp)<BR /><BR />Thanks,<BR />Johnson Tue, 06 Jan 2009 14:41:10 GMT https://community.hpe.com/t5/operating-system-hp-ux/restrict-ftp-services/m-p/5148997#M454323 Johnson Punniyalingam 2009-01-06T14:41:10Z https://community.hpe.com/t5/operating-system-hp-ux/restrict-ftp-services/m-p/5148998#M454324 Thanks Thu, 12 Feb 2009 13:04:29 GMT https://community.hpe.com/t5/operating-system-hp-ux/restrict-ftp-services/m-p/5148998#M454324 unixadmin_1 2009-02-12T13:04:29Z