HPE Community
Operating System - Linux
1832111 Members
3058 Online
110038 Solutions
New Discussion

Re: How to use /var/adm/inetd.sec?

 
zhaidc_1
Occasional Contributor

‎10-20-2005 05:50 PM

‎10-20-2005 05:50 PM

How to use /var/adm/inetd.sec?

I want to limit some user telnet my system,so add /var/adm/inetd.sec in my system,for example:telnet allow 10.6.6.6, but I find the other user can still telnet the host. why?
0 Kudos
Reply
3 REPLIES 3
Steven E. Protter
Exalted Contributor

‎10-20-2005 07:23 PM

‎10-20-2005 07:23 PM

Re: How to use /var/adm/inetd.sec?

inetd.sec is read top to bottom.

The reason everyone can still telnet to your system is there is no deny.

telnet deny * in that file, right after the allow statement.

inetd -c

Now only that user should be allowed.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
0 Kudos
Reply
Muthukumar_5
Honored Contributor

‎10-20-2005 08:10 PM

‎10-20-2005 08:10 PM

Re: How to use /var/adm/inetd.sec?

Do you want to control based on users? It is possible with tcpwrappers or /etc/profile scripting.

/var/adm/inetd.sec file is used to control Remote IP-Address or Hostname or Network based.

To control with /etc/profile then,

--- /etc/profile ---
if [[ ${LOGNAME} = "test" || ${LOGNAME} = "guest" ]]
then
echo "${LOGNAME} is not allowed to login. Contact administrator
"
sleep 5
exit 1
fi

TCP Wrappers:

http://www.linuxfromscratch.org/blfs/view/stable/basicnet/tcpwrappers.html
http://www.phys.ufl.edu/docs/system/public_domain/tcpwrapper.html

Note: You have to change X-Windows to use /etc/profile for login so that scripting will control X-Windows too.

hth.
Easy to suggest when don't know about the problem!
0 Kudos
Reply
Ivajlo Yanakiev
Respected Contributor

‎10-21-2005 10:53 PM

‎10-21-2005 10:53 PM

Re: How to use /var/adm/inetd.sec?

I thing that you mean xinet.d ?
/var/adm/ined.sec is HPUX files for that !!!
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.