https://community.hpe.com/t5/operating-system-linux/stopping-particular-service-access-in-telnet/m-p/4113191#M83313 check out<BR />iptables -A INPUT -s <IP address=""> --dport 23 -j DROP.<BR /><BR />at the iptables file<BR />then for ftp same as above but --dport 21<BR />ssh 22</IP> Thu, 27 Dec 2007 09:12:34 GMT sandeep mathur 2007-12-27T09:12:34Z https://community.hpe.com/t5/operating-system-linux/stopping-particular-service-access-in-telnet/m-p/4113186#M83308 hi,<BR /><BR /> Can we stop a user from using a particular service like reboot..etc to a user who has <BR />telneted into our machine ?<BR /><BR />thanks in advance Fri, 07 Dec 2007 05:44:26 GMT https://community.hpe.com/t5/operating-system-linux/stopping-particular-service-access-in-telnet/m-p/4113186#M83308 Srikara.D 2007-12-07T05:44:26Z https://community.hpe.com/t5/operating-system-linux/stopping-particular-service-access-in-telnet/m-p/4113187#M83309 Check the information in this link:<BR /><BR /><A href="http://www.redhat.com/docs/manuals/linux/RHL-9-Manual/custom-guide/s1-access-console-program.html" target="_blank">http://www.redhat.com/docs/manuals/linux/RHL-9-Manual/custom-guide/s1-access-console-program.html</A><BR /> Fri, 07 Dec 2007 06:41:43 GMT https://community.hpe.com/t5/operating-system-linux/stopping-particular-service-access-in-telnet/m-p/4113187#M83309 Ivan Ferreira 2007-12-07T06:41:43Z https://community.hpe.com/t5/operating-system-linux/stopping-particular-service-access-in-telnet/m-p/4113188#M83310 just give normal permissions to the user through which it is coming through telnet.<BR />Don give him special priveledges which would allow him to do some damage to system.<BR />It is applicable to normal user aalso doesn't necessary to be a user through telnet.<BR />BR,<BR />kapil Fri, 07 Dec 2007 06:47:28 GMT https://community.hpe.com/t5/operating-system-linux/stopping-particular-service-access-in-telnet/m-p/4113188#M83310 Kapil Jha 2007-12-07T06:47:28Z https://community.hpe.com/t5/operating-system-linux/stopping-particular-service-access-in-telnet/m-p/4113189#M83311 ACL (Access Control List) could be used to assign or deny privileges. Mon, 10 Dec 2007 16:09:16 GMT https://community.hpe.com/t5/operating-system-linux/stopping-particular-service-access-in-telnet/m-p/4113189#M83311 loco_vikide 2007-12-10T16:09:16Z https://community.hpe.com/t5/operating-system-linux/stopping-particular-service-access-in-telnet/m-p/4113190#M83312 If it's just a 'user', then they shouldn't have access to those commands anyway. Check the permissions on them to ensure they aren't suid-root.<BR /><BR />If you're talking about a user who has 'sudo' access, then look at the documentation in 'man sudoers'.<BR /><BR />If you're talking about a user who has 'su' access, well you can't without writing wrappers around them (which I wouldn't recomend). Tue, 11 Dec 2007 00:00:32 GMT https://community.hpe.com/t5/operating-system-linux/stopping-particular-service-access-in-telnet/m-p/4113190#M83312 Stuart Browne 2007-12-11T00:00:32Z https://community.hpe.com/t5/operating-system-linux/stopping-particular-service-access-in-telnet/m-p/4113191#M83313 check out<BR />iptables -A INPUT -s <IP address=""> --dport 23 -j DROP.<BR /><BR />at the iptables file<BR />then for ftp same as above but --dport 21<BR />ssh 22</IP> Thu, 27 Dec 2007 09:12:34 GMT https://community.hpe.com/t5/operating-system-linux/stopping-particular-service-access-in-telnet/m-p/4113191#M83313 sandeep mathur 2007-12-27T09:12:34Z