HPE Community
Operating System - HP-UX
1847208 Members
3416 Online
110263 Solutions
New Discussion

Telnet for a particular user on 11.23-urgent help required

 
Trng
Super Advisor

‎10-05-2008 06:40 PM

‎10-05-2008 06:40 PM

Telnet for a particular user on 11.23-urgent help required

Hi Gurus,

i have 11.23 ia 64 machine,many users are configured.now one ftp user "test" requires telnet access also.how to grant/configure telnet access for users ??is it possible to configure telnet for user basis ??.this user should be able from anywhere from the network (not host specific).

rgds
skr
administrator
0 Kudos
Reply
6 REPLIES 6
SKR_1
Trusted Contributor

‎10-05-2008 07:46 PM

‎10-05-2008 07:46 PM

Re: Telnet for a particular user on 11.23-urgent help required

http://forums12.itrc.hp.com/service/forums/questionanswer.do?admit=109447627+1223264321096+28353475&threadId=1235319

Check the above thread, you will get the solution.

Thanks

SKR
0 Kudos
Reply
Ivan Krastev
Honored Contributor

‎10-05-2008 07:53 PM

‎10-05-2008 07:53 PM

Re: Telnet for a particular user on 11.23-urgent help required

Comment out telnet entry in /etc/inetd.conf file and reload inetd daemon: inetd -c

After that you can restrict users per hosts/networks via /var/adm/inetd.sec file.

regards,
ivan
0 Kudos
Reply
Sandeep_Chaudhary
Trusted Contributor

‎10-05-2008 09:43 PM

‎10-05-2008 09:43 PM

Re: Telnet for a particular user on 11.23-urgent help required

make sure that telnet is enabled in /etc/inetd.conf

suxde900 # cat /etc/inetd.conf|grep -i telnet
telnet stream tcp nowait root /usr/lbin/telnetd telnetd
sandchau as root@suxde900 [/root]
suxde900 #

check shell entry for ftp user. As per practise it is /bin/false . change it to normal shell like csh, ksh or sh.


0 Kudos
Reply
Trng
Super Advisor

‎10-12-2008 12:19 AM

‎10-12-2008 12:19 AM

Re: Telnet for a particular user on 11.23-urgent help required

HI,

My requirement is i have a user called "test: which is using the /bin/false having only ftp access.now i want to give telnet access for this user from any machine within the network.telnet is enable in inetd.conf .how to grant telnet access to this ftp user ?if i change the shell /bin/false to someother shell like /sbin/sh etc ?/

reghards
sureshkumar
administrator
0 Kudos
Reply
Ninad_1
Honored Contributor

‎10-12-2008 05:10 AM

‎10-12-2008 05:10 AM

Re: Telnet for a particular user on 11.23-urgent help required

Hi,

It seems that your test user was configured to disallow shell usage - thus using /bin/false.
Now if you need to allow test to telnet, then you need to modify the shell for the user to /usr/bin/ksh or /usr/bin/csh whichever shell you want to use for the user.
You can use SAM or use command line
usermod -s /usr/bin/ksh test

Regards,
Ninad
0 Kudos
Reply
Laurent Menase
Honored Contributor

‎10-13-2008 12:32 AM

‎10-13-2008 12:32 AM

Re: Telnet for a particular user on 11.23-urgent help required

you can also use restricted shell,

rsh, rksh. whith those shell, a user can't use cd , and can only execute commands which are in its path, which it can't redefine of course.

Then you will be able to make a restricted env with only the command you need.
- ls for instance if you want that ftpd be able to run ls.

0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.