topic How to use /var/adm/inetd.sec? in Operating System - Linux

How to use /var/adm/inetd.sec?

zhaidc_1 — Fri, 21 Oct 2005 00:50:51 GMT

I want to limit some user telnet my system,so add /var/adm/inetd.sec in my system,for example:telnet allow 10.6.6.6, but I find the other user can still telnet the host. why?

Re: How to use /var/adm/inetd.sec?

Steven E. Protter — Fri, 21 Oct 2005 02:23:37 GMT

inetd.sec is read top to bottom.

The reason everyone can still telnet to your system is there is no deny.

telnet deny * in that file, right after the allow statement.

inetd -c

Now only that user should be allowed.

SEP

Re: How to use /var/adm/inetd.sec?

Muthukumar_5 — Fri, 21 Oct 2005 03:10:03 GMT

Do you want to control based on users? It is possible with tcpwrappers or /etc/profile scripting.

/var/adm/inetd.sec file is used to control Remote IP-Address or Hostname or Network based.

To control with /etc/profile then,

--- /etc/profile ---
if [[ ${LOGNAME} = "test" || ${LOGNAME} = "guest" ]]
then
echo "${LOGNAME} is not allowed to login. Contact administrator

"
sleep 5
exit 1
fi

TCP Wrappers:

http://www.linuxfromscratch.org/blfs/view/stable/basicnet/tcpwrappers.html
http://www.phys.ufl.edu/docs/system/public_domain/tcpwrapper.html

Note: You have to change X-Windows to use /etc/profile for login so that scripting will control X-Windows too.

hth.

Re: How to use /var/adm/inetd.sec?

Ivajlo Yanakiev — Sat, 22 Oct 2005 05:53:32 GMT

I thing that you mean xinet.d ?
/var/adm/ined.sec is HPUX files for that !!!