Solved

ftp security in AIX 4.3

Posted on 2000-03-22
4
607 Views
Last Modified: 2013-12-06
Can AIX ftp service restrict certain IP address from doing ftp to the AIX host. (eg allowing IP x.x.x.x to do ftp to the AIX host).

In HP-UX, this can be done at the inetd.sec file. Can this be done in AIX?
If yes, how?
0
Comment
Question by:joekwchen
  • 2
4 Comments
 
LVL 14

Expert Comment

by:chris_calabrese
ID: 2645059
I don't think you can do this directly with the stock AIX tools, but you could do it by running TCP Wrappers.  See ftp://coast.cs.purdue.edu/pub/tools/unix/tcp_wrappers/
0
 
LVL 1

Accepted Solution

by:
markus_baertschi earned 100 total points
ID: 2652599
Hello,

AIX has no built-in provision for restricting ftp access using the IP address.
I can give you three choices:
- Install the IBM Firewall software on the machine and use this to
  control access. This is an excellent high security solution, but might
  be overkill for your situation.
- Install TCP-wrappers. You can download smit-installable, compiled
  binaries downloaded from Bull. (See below)
- Install another ftp daemon. Wu-ftpd has lots of configuration features
  including access restrictions by host.

tcp-wrapper: http://www-frec.bull.com/download/out/tcp_wrappers-7.6.0.0.exe
wu-ftpd:
http://www-frec.bull.com/download/aix432/wu-ftp-2.6.0.0.exe
0
 

Author Comment

by:joekwchen
ID: 2656100
Thanx Markus, I've found another way, I configure  some filtering at Configure IP Security (IPv4) from smit.

Also thanx to chris.

0
 
LVL 1

Expert Comment

by:markus_baertschi
ID: 2656386
Thanks to you too. I'm just looking into these IP filtering things. It looks
like a very useful feature. It must have been added recently, I was not
aware if it to be there !

Markus
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I promised to write further about my project, and here I am.  First, I needed to setup the Primary Server.  You can read how in this article: Setup FreeBSD Server with full HDD encryption (http://www.experts-exchange.com/OS/Unix/BSD/FreeBSD/A_3660-S…
FreeBSD on EC2 FreeBSD (https://www.freebsd.org) is a robust Unix-like operating system that has been around for many years. FreeBSD is available on Amazon EC2 through Amazon Machine Images (AMIs) provided by FreeBSD developer and security office…
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
This video shows how to set up a shell script to accept a positional parameter when called, pass that to a SQL script, accept the output from the statement back and then manipulate it in the Shell.

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now