topic Re: SSH A.03.71.000 Lock Up Telnet in Operating System - HP-UX

SSH A.03.71.000 Lock Up Telnet

Jorge Mel — Tue, 13 Jul 2004 18:28:56 GMT

I have SSH running on my server. I am able to telnet the normal method and via the secure method. I have a SSH client on my workstation.
Can't seem to find in the documentation how to lock up server so we can only telnet the secure method (SSH).

Thanks,

George M.

Re: SSH A.03.71.000 Lock Up Telnet

Patrick Wallek — Tue, 13 Jul 2004 18:30:45 GMT

Just comment out the 'telnet' line in /etc/inetd.conf and then run 'inetd -c' to force inetd to re-read its configuration file. After that you will not be able to telnet.

Re: SSH A.03.71.000 Lock Up Telnet

Sundar_7 — Tue, 13 Jul 2004 18:32:56 GMT

George,

telnet listens on port 23 and SSH on 22. You need to disable inetd from spawning telnetd.

vi /etc/inetd.conf
telnet
to
#telnet

comment out the line that begins with "telnet".Save inetd.conf and send HUP signal to inetd.

# inetd -c

Now you will only be able to SSH and cannot telnet to the system

- Sundar

Re: SSH A.03.71.000 Lock Up Telnet

Michael Tully — Tue, 13 Jul 2004 18:34:41 GMT

Edit /etc/inetd.conf file
COmment out the line that looks like this:

telnet stream tcp nowait root /usr/lbin/telnetd telnetd -b /etc/issue

Save the file and then run this:

# inetd -c

(if your using ssh, you might also consider doing the same for ftp, same procedure)

Re: SSH A.03.71.000 Lock Up Telnet

Michael Selvesteen_2 — Wed, 28 Jul 2004 23:34:42 GMT

Hello George,

Here is a fine document on disabling some common services in HP-UX.

http://www.cites.uiuc.edu/wsg/resources/security/hpux.html

You can employ ssh port forwarding mechanism for securing telnet port too.

refer for more information
http://www.ssh.com/support/documentation/online/ssh/adminguide/32/Port_Forwarding.html

--
M