HPE Community
Operating System - HP-UX
1827415 Members
5264 Online
109965 Solutions
New Discussion

Re: telnetd

 
SOLVED
Go to solution
Brett Penza
Occasional Advisor

‎08-22-2001 07:24 AM

‎08-22-2001 07:24 AM

telnetd

In looking at a "ps -ef", I am noticing a lot of processes with "telnetd" and root user. Is this something I should be concerned about.? What is the telnetd doing?
0 Kudos
Reply
6 REPLIES 6
Edward Alfert_2
Respected Contributor

‎08-22-2001 07:34 AM

‎08-22-2001 07:34 AM

Solution

Re: telnetd

those are all the users that are telneted into your server right now. Each connection has a unique connection.

when you do "ps -ef" and get a list like the following:
root 11456 17500 0 Aug 20 pts/tU 0:00 telnetd
root 1836 17500 0 07:01:17 pts/td 0:00 telnetd
root 24377 17500 0 05:25:53 pts/ta 0:00 telnetd
root 3592 17500 0 07:18:09 pts/ti 0:00 telnetd
root 9298 17500 0 08:13:03 pts/tI 0:00 telnetd
root 17409 17500 0 09:21:45 pts/t7 0:00 telnetd

you can then do:
who -u | grep pts/t7
and find out which user is using that specific connection.

the "root" in the list does not mean that a user logged in as root with that connection.

"Do what you love and you will never work a day in your life." - Confucius
Reply
Tim Krego_1
Frequent Advisor

‎08-22-2001 07:35 AM

‎08-22-2001 07:35 AM

Re: telnetd

How are you connected to the machine? Are you on the local console?
HP/UX Newbie
0 Kudos
Reply
Christopher McCray_1
Honored Contributor

‎08-22-2001 07:37 AM

‎08-22-2001 07:37 AM

Re: telnetd

You can also use the last | more command to see who is still logged in and tail the /var/adm/sulog as well
It wasn't me!!!!
Reply
Christopher McCray_1
Honored Contributor

‎08-22-2001 07:56 AM

‎08-22-2001 07:56 AM

Re: telnetd

just as an add-in, the process telnetd is a subdaemon spawned by the superdaemon inetd every time a telnet session is established. The same goes for other daemons such as ftpd. To get the comprehensive list of processes controlled by inetd, look at inetd man pages.

Have a good day
Chris
It wasn't me!!!!
Reply
Victor_5
Trusted Contributor

‎08-22-2001 08:53 AM

‎08-22-2001 08:53 AM

Re: telnetd

Hi Brett:

telnetd is a daemon servicing for telnet using the tcp protocol. In my system, many users are using telnet to access the unix box from their own PC which running on NT platform. That is why we see so many telnetd when do ps, my system has already run in this manner for long time, I don't think you need concern anything in this situation.

Reply
Enno Baars
Advisor

‎08-23-2001 08:27 AM

‎08-23-2001 08:27 AM

Re: telnetd

There's just one thing missing in the answers so far:

If you care about the security of your system the answer is _yes_, you _should_ be concerned!

Obivously many users are connecting to your machine using telnet.
Now telnet has the bad habit of transmitting the password unencrypted when logging in - just as any data being transmitted while the connection is up. If someone can sniff the packets between the two machines he/she can easily get access to any account...

You should look into the SSH Suite - you'll get encrypted transmission etc. I'd recommend the OpenSource Version OpenSSH.

Checkout http://www.openssh.com/


Cheers,
Enno
Oh God, I hate this damn machine, I wish that they would sell it! It never does that what I mean but only what I tell it.
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.