ROOTVG - AIX & POWER Portal

Prevent to Telnet or FTP from the remote PC!

Home

Help

Login

Register

	Welcome, Guest. Please login or register.	January 09, 2009, 01:48:44 PM
		Login with username, password and session length

ROOTVG > AIX > Administration > Prevent to Telnet or FTP from the remote PC!

Pages: [1] Go Down

« previous next »

Print

	Author	Topic: Prevent to Telnet or FTP from the remote PC! (Read 562 times)
0 Members and 1 Guest are viewing this topic.

John Peck

Global Moderator
Senior Member

Posts: 46

Re: Prevent to Telnet or FTP from the remote PC!

« Reply #1 on: September 09, 2008, 10:16:59 PM »

Using TCP Wrappers you can control telnet, ftp and other services,
granting access to specific IPs or ranges.

Install freeware.tcp_wrappers.rte, from the Bull repository of freeware
http://www.bullfreeware.com (http://www.bullfreeware.com).

Edit /etc/inetd.conf as follows:
##ftp stream tcp nowait root /usr/sbin/ftpd ftpd -l -d -u 027 -t 900 -T 900 ftp stream tcp nowait root /usr/local/bin/tcpd ftpd -l -d -u 027 -t 900 -T 900 ## telnet stream tcp nowait root /usr/sbin/telnetd telnetd -a telnet stream tcp nowait root /usr/local/bin/tcpd telnetd -a

Create /etc/hosts.deny and /etc/hosts.allow to control access, like this:
echo "ALL: ALL" > /etc/hosts.deny echo "ALL: 127." > /etc/hosts.allow

And add whatever addresses you require to allow:
echo "ALL: 10.100.0.3" >> /etc/hosts.allow echo "telnetd: 192.168.0." >> /etc/hosts.allow echo "ftpd: 172.16." >> /etc/hosts.allow ...


« Last Edit: September 10, 2008, 03:48:24 PM by John Peck »	Logged

ballack

New Member

Posts: 3

Prevent to Telnet or FTP from the remote PC!

« on: September 09, 2008, 07:49:33 AM »

I have a question about sercurity. How to prevent from telnet or ftp to the a server ( server runs AIX OS) of the remote PC if we know IP address that PC.