HPE Community
Operating System - HP-UX
1833776 Members
2355 Online
110063 Solutions
New Discussion

banner set-up

 
SOLVED
Go to solution
Edgar_10
Frequent Advisor

‎09-10-2003 06:02 AM

‎09-10-2003 06:02 AM

banner set-up

Hi All,

What file need i edit/create to display the hostname being accessed before the user is prompted with the login prompt during a telnet/rlogin session?

Thanks in advance!
0 Kudos
Reply
9 REPLIES 9
Steven E. Protter
Exalted Contributor

‎09-10-2003 06:03 AM

‎09-10-2003 06:03 AM

Re: banner set-up

The file that displays befoer a telnet login is /etc/issue

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
0 Kudos
Reply
Pete Randall
Outstanding Contributor

‎09-10-2003 06:09 AM

‎09-10-2003 06:09 AM

Re: banner set-up

Edgar,

For telnet, modify the telnetd entry in /etc/inetd.conf (see man telnetd):

telnet stream tcp nowait root /usr/lbin/telnetd telnetd -b

/etc/issue may work for rlogin - not sure.



Pete

Pete
0 Kudos
Reply
Massimo Bianchi
Honored Contributor

‎09-10-2003 06:15 AM

‎09-10-2003 06:15 AM

Re: banner set-up

Hi, for telnet you already have the answer, for rlogin add the followinf line in /etc/inetd.conf:

/usr/lbin/rlogind [-lns] [-B bannerfile]



thanks to "man rlogind"
0 Kudos
Reply
Paula J Frazer-Campbell
Honored Contributor

‎09-10-2003 06:19 AM

‎09-10-2003 06:19 AM

Solution

Re: banner set-up

When using /etc/issue - do not put a welcome message i.e. "Welcome to ABCD PLC" as there has alledgely been a case where a hacker got away with it because his defence was "It said welcome so I presumed I was". The judge being not exactly computer literate dismissed the case.

Also do not announce the OS as this again gives the potential hacker more information.

Your etc/issue could contain something like this

-------WARNING------
YOUR CONNECTION TO THIS MACHINE
WILL BE MONITORED AND RECORDED.
UNAUTHORISED USE OR OVER
AUTHORISED USE OF THIS SYSTEM
IS FORBIDDEN.

HTH

Paula
If you can spell SysAdmin then you is one - anon
Reply
Jeff Schussele
Honored Contributor

‎09-10-2003 06:20 AM

‎09-10-2003 06:20 AM

Re: banner set-up

Hi,

The file is, as Pete noted, whatever follows the -b parameter on the /etc/inetd.conf line for telnet.

BUT - I would STRONGLY encourage you not to advertise the host name this way. Hackers love this, they may get an IP & have NO clue what the host is. This will give it to them on a silver platter.
The only thing that should be displayed in a banner is a legal warning about what users can & can't do, that they will be monitored & criminal activities will result in prosecution - period.

You never want to advertise hostnames nor OS types in banners - never.

My 2 cents,
Jeff
PERSEVERANCE -- Remember, whatever does not kill you only makes you stronger!
0 Kudos
Reply
Edgar_10
Frequent Advisor

‎09-11-2003 07:03 AM

‎09-11-2003 07:03 AM

Re: banner set-up

Hi All,

Ive setup the banner display but how would is display the following in BOLD HIGHLIGHTED font - WARNING AUTHORISED ACCESS ONLY - to be displayed?

Thanks in advance!
0 Kudos
Reply
Massimo Bianchi
Honored Contributor

‎09-11-2003 07:28 AM

‎09-11-2003 07:28 AM

Re: banner set-up

Hi,
it was with the old terminal ascii art and nice finger, animations. I had one of them at university...

Check these link and find your inspiration!

http://www.geocities.com/SoHo/2695/links.htm#animations

http://llizard.crosswinds.net/ascii-art/animation/animframe.htm

(found by a goggle search with "ascii art" "ascii animations")

Massimo



0 Kudos
Reply
Massimo Bianchi
Honored Contributor

‎09-11-2003 07:32 AM

‎09-11-2003 07:32 AM

Re: banner set-up

NO POINTS

i lothe these:

http://grox.net/misc/vt/

NO POINTS

Massimo
0 Kudos
Reply
Sergejs Svitnevs
Honored Contributor

‎09-11-2003 07:59 AM

‎09-11-2003 07:59 AM

Re: banner set-up

/etc/issue contains:

^[[1m WARNING AUTHORISED ACCESS ONLY ^[[m

where:
^[[1m is CTRL-V CTRL-[ [ 1 m
^[[m is CTRL-V CTRL-[ [ m

Regards,
Sergejs
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.