HPE GreenLake Administration
- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- Block remote login from a user
Operating System - HP-UX
1830878
Members
1675
Online
110017
Solutions
Forums
Categories
Company
Local Language
back
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Forums
Discussions
Discussions
Discussions
Forums
Discussions
back
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Blogs
Information
Community
Resources
Community Language
Language
Forums
Blogs
Go to solution
Topic Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-24-2005 12:47 AM
03-24-2005 12:47 AM
Hi all,
I have a HPUX 11.00 and I want to block remote logins from a specific user. I would like to permit su to that user, but wouldn't logins to them directly...
Like what occurs with root and /etc/securetty....
Sorry for my poor english....
Thanks in advance,
Flavio.
I have a HPUX 11.00 and I want to block remote logins from a specific user. I would like to permit su to that user, but wouldn't logins to them directly...
Like what occurs with root and /etc/securetty....
Sorry for my poor english....
Thanks in advance,
Flavio.
Solved! Go to Solution.
3 REPLIES 3
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-24-2005 01:01 AM
03-24-2005 01:01 AM
Re: Block remote login from a user
If that user comes from definite ip addresses, you can block him using /var/adm/ined.sec file. You will have to put following in this file.
telnet deny "ip_address"
Is above can not be done, You may need to use sudo/tcp wrapers. If you have tcp wrppers, put following in /etc/hosts.deny
telnetd : "user_name"
telnet deny "ip_address"
Is above can not be done, You may need to use sudo/tcp wrapers. If you have tcp wrppers, put following in /etc/hosts.deny
telnetd : "user_name"
There is no substitute to HARDWORK
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-24-2005 01:13 AM
03-24-2005 01:13 AM
Solution
There is no simple way to do this because the user must first login to be identified. So you would do this in /etc/profile:
PROBUSER=userb
ORIGUSER=$(who -m | cut -f1 -d \ )
if [ $ORIGUSER = $PROBUSER ]
then
echo "Login not allowed"
exit
fi
In this case, if the user logs in as usera and then runs: su - userb, /etc/profile will allow this because who -m will report the original user's login. If the original login is userb then it will fail because the original user is userb.
Bill Hassell, sysadmin
PROBUSER=userb
ORIGUSER=$(who -m | cut -f1 -d \ )
if [ $ORIGUSER = $PROBUSER ]
then
echo "Login not allowed"
exit
fi
In this case, if the user logs in as usera and then runs: su - userb, /etc/profile will allow this because who -m will report the original user's login. If the original login is userb then it will fail because the original user is userb.
Bill Hassell, sysadmin
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-24-2005 01:25 AM
03-24-2005 01:25 AM
Re: Block remote login from a user
if you replace the encriped password in /etc/passwd, (if using non trusted systems) with a single character, the user can't directly log in, but root can su to it.
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.
Company
Events and news
Customer resources
© Copyright 2025 Hewlett Packard Enterprise Development LP