can someone please help with telnet ???

This is a discussion on can someone please help with telnet ??? within the Linux Security forums, part of the System Security and Security Related category; I'm trying to limit telnet access to a server to one i.p. address, can someone help with this ? ...


Go Back   Usenet Forums > System Security and Security Related > Linux Security

Reload this Page can someone please help with telnet ???

FAQ Members List Calendar Search Today's Posts Mark Forums Read

Reply

 

LinkBack Thread Tools Search this Thread Display Modes
  #1 (permalink)  
Old 11-02-2005
dorantes@mac.com
 
Posts: n/a
Default can someone please help with telnet ???
I'm trying to limit telnet access to a server to one i.p. address, can
someone help with this ?
Am I able to use the /etc/hosts.allow & /etc/hosts.deny files for this
the same as I would the sshd ?

thanks...

Reply With Quote
  #2 (permalink)  
Old 11-02-2005
Keith Keller
 
Posts: n/a
Default Re: can someone please help with telnet ???
On 2005-11-02, dorantes@mac.com <dorantes@mac.com> wrote:
> I'm trying to limit telnet access to a server to one i.p. address, can
> someone help with this ?
> Am I able to use the /etc/hosts.allow & /etc/hosts.deny files for this
> the same as I would the sshd ?

It depends: which telnetd; standalone, from inetd, or from xinetd;
what's in the config files, if from inetd or xinetd; and which if any
have been compiled with tcpwrapper support?

The obligatory question for cols: Why do you need telnetd support? Can
you use sshd or some other service instead?

--keith

--
kkeller-usenet@wombat.san-francisco.ca.us
(try just my userid to email me)
AOLSFAQ=http://wombat.san-francisco.ca.us/cgi-bin/fom
see X- headers for PGP signature information

Reply With Quote
  #3 (permalink)  
Old 11-03-2005
dorantes@mac.com
 
Posts: n/a
Default Re: can someone please help with telnet ???
xinetd

service telnet
{
disable = no
flags = REUSE
socket_type = stream
wait = no
user = root
server = /usr/sbin/in.telnetd
log_on_failure += USERID
}

Reply With Quote
  #4 (permalink)  
Old 11-03-2005
DM
 
Posts: n/a
Default Re: can someone please help with telnet ???
Keith Keller wrote:
> On 2005-11-02, dorantes@mac.com <dorantes@mac.com> wrote:
>
>>I'm trying to limit telnet access to a server to one i.p. address, can
>>someone help with this ?
>>Am I able to use the /etc/hosts.allow & /etc/hosts.deny files for this
>>the same as I would the sshd ?
>
>
> It depends: which telnetd; standalone, from inetd, or from xinetd;
> what's in the config files, if from inetd or xinetd; and which if any
> have been compiled with tcpwrapper support?
>
> The obligatory question for cols: Why do you need telnetd support? Can
> you use sshd or some other service instead?
>
> --keith
>
If you need to use telnet, why not just use iptables to allow/deny telnet?

iptables -I INPUT -s xxx.xxx.xxx.xxx -p tcp --dport 23:23 -j DROP

iptables -I INPUT -s xxx.xxx.xxx.xxx -p tcp --dport 23:23 -j ACCEPT

....etc...


-D
Reply With Quote
  #5 (permalink)  
Old 11-03-2005
Benway
 
Posts: n/a
Default Re: can someone please help with telnet ???
On 2 Nov 2005 16:47:30 -0800, "dorantes@mac.com" <dorantes@mac.com>
wrote:

>xinetd
>
>service telnet
>{
> disable = no
> flags = REUSE
> socket_type = stream
> wait = no
> user = root
> server = /usr/sbin/in.telnetd
> log_on_failure += USERID
>}


man xinetd.conf and check out only_from
add a rule into your firewall
add a rule in tcpwrappers
--

Benway
Reply With Quote
Reply
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are Off
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On




All times are GMT +1. The time now is 09:46 AM.

Contact Us - Usenet Forums - Archive - Top

Powered by vBulletin® Version 3.7.3
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO 3.0.0