- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- Re: testing for port activity
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО08-28-2009 10:46 AM
тАО08-28-2009 10:46 AM
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО08-28-2009 11:05 AM
тАО08-28-2009 11:05 AM
Re: testing for port activity
yes you can use ssh on hpux
which version hpux are you running?
you can also see which ports are listening/open with netstat commands
#netstat -a
will list all ports as defined in /etc/services and /etc/inetd.conf
Andy
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО08-28-2009 11:09 AM
тАО08-28-2009 11:09 AM
Re: testing for port activity
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО08-28-2009 11:19 AM
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО08-28-2009 11:40 AM
тАО08-28-2009 11:40 AM
Re: testing for port activity
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО08-28-2009 11:46 AM
тАО08-28-2009 11:46 AM
Re: testing for port activity
If, on the other hand, your security folks are implementing the restriction by mandating the removal of the telnet _clients_, my opinion of the skill level of those security folks would be pretty low.
A telnet client is a small binary (fits on a single old 3.5" disk!) that requires no special privileges. So anyone who can bring a file to a system can easily use his/her own telnet binary or copy it from another system, and an intruder would most likely use his/her own tools to minimize the amount of log traces anyway.
On the other hand, if one of the requirements is to make the telnet client non-executable by ordinary users, I would have no problem with that. Our systems already have separate group for sysadmin-level user accounts: I would just make telnet executable by that group only.
chgrp unixadm /usr/bin/telnet
chmod 550 /usr/bin/telnet
Of course, you might also use the removal of the telnet clients as a justification for installing a more powerful network diagnostic tool or two - for admin use only.
For example, the open-source netcat (nc) can be used to test both TCP and UDP connections, unlike telnet which can do only TCP. It is also easier to script for automated testing.
Tcpdump is also very useful (because it understands a lot of network protocols and allows dumping the payload data in a meaningful format), and is freely available from HP in the HP-UX Internet Express kit. (from software.hp.com for 11.23 and 11.31 only; for 11.11, find an Internet Express CD among your HP-UX 11.11 media kits and use that).
MK