HPE Community
Operating System - HP-UX
1830247 Members
2248 Online
110000 Solutions
New Discussion

TCP Wrapper and the banner

 
Crystal_1
Frequent Advisor

‎10-08-2002 06:49 AM

‎10-08-2002 06:49 AM

TCP Wrapper and the banner

Hey,

I am installing TCP Wrapper on one hpux 11.0 box and have one question here:

I can configure the banner within the two files, /etc/hosts.allow and /etc/hosts.deny. However, I can see both the banner I set and the default one, which is HP-UX unixh66 B.11.00 U 9000/800 (td). This is what I don't want to see.

I know I can add "-a /etc/banner" in the /etc/inetd.conf WITHOUT TCP Wrapper. However, since the tcpd has replaced the original telnetd, it's not possible to use the option "-a".

Any idea to change the defaul login banner with TCP Wrapper installed?

Thanks
0 Kudos
Reply
4 REPLIES 4
Ted Ellis_2
Honored Contributor

‎10-08-2002 06:53 AM

‎10-08-2002 06:53 AM

Re: TCP Wrapper and the banner

there is actually an option within tcp_wrappers when you compile to create proper banner pages. Did you do this?

I am also basing this on the Tcpwrapper code from ftp://porcupine.org/pub/security/index.html

Ted
0 Kudos
Reply
Ted Ellis_2
Honored Contributor

‎10-08-2002 06:57 AM

‎10-08-2002 06:57 AM

Re: TCP Wrapper and the banner

and the option for running your own banner page with telnet for inetd.conf is:

telnet -b /etc/

we use

telnet -b /etc/issue

Ted
0 Kudos
Reply
Ted Ellis_2
Honored Contributor

‎10-08-2002 06:58 AM

‎10-08-2002 06:58 AM

Re: TCP Wrapper and the banner

should have put this in one reply.. sorry

go ahead and create /etc/issue and put the message you want in it. Could even be something null. Modify the inetd.conf file so that the call for the tcp_wrapped telnetd does issue the banner call. I think the tcp_wrapper from inetd.conf may still run the default banner for telnet unless you take steps to squash it.

Ted
0 Kudos
Reply
Crystal_1
Frequent Advisor

‎10-08-2002 07:11 AM

‎10-08-2002 07:11 AM

Re: TCP Wrapper and the banner

No...

Here is the line of telnet service without TCPWrapper:

telnet stream tcp nowait root /usr/lbin/telnetd telnetd -b /etc/motd

Here is the one with TCPWrapper:

telnet stream tcp nowait root /usr/lbin/tcpd telnetd -b /etc/motd

Oh...I got it....it works!

Crsytal

0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.