Solved

questions of solaris8 /AIX 4.3

Posted on 2002-06-21
7
202 Views
Last Modified: 2010-04-21
on solaris 8 and AIX 4.3, I donot want to close Telnet service, but only want to let some persons login. How can i do?

I know that I can use SMIT USER to limit a user,but I donot want to use SMIT tools!!

I donot want to limit telnet with IP address, but with username!! Like /etc/ftpusers.
0
Comment
Question by:hotbox
7 Comments
 
LVL 40

Expert Comment

by:jlevie
ID: 7100016
On Solaris you can change /etc/profile & /etc/.login to only allow specific users to login. Since those shell init scripts are executed first by all shells, it's a good place to invoke per-user limits. I don't have a copy at hand of the profile and .login that I use for that purpose but I'll try to remmeber to post a comment with them in it Monday. I'd imagine that a similar approach should work for AIX.
0
 
LVL 38

Expert Comment

by:yuzh
ID: 7100018
Your can edit /etc/hosts.allow file (create one if you don't have it on your system)

Add the following to the file:

telnet: 192.168.1.3,192.157.1.5, 192.147.1.*

Note:this will allow the machine (192.168.1.3,192.157.1.5)
     and the machine in the subnet 192.147.1 to telnet to
     your system.

     since telnet is not secure, you should installed ssh
to your system.

     secure sheel is available from:
     http://www.sunfreeware.com/
     for Solaris, or
     http://www.openssh.org
     for other systems
0
 

Author Comment

by:hotbox
ID: 7100594
I donot want to limit telnet with IP address, but with username!!
0
Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

 
LVL 38

Accepted Solution

by:
yuzh earned 100 total points
ID: 7101670

   Intstall TCP/IP daemon wrapper package, and configure the wrappers to always perform client username
lookups.
0
 
LVL 51

Expert Comment

by:ahoffmann
ID: 7102094
change the shell in /etc/passwd to /bin/false for those users which should not login
0
 
LVL 20

Expert Comment

by:tfewster
ID: 7921442
No comment has been added lately, so it's time to clean up this Topic Area.
I will leave a recommendation for this question in the Cleanup topic area as follows:

- Answered by yuzh

Please leave any comments here within the next 7 days

PLEASE DO NOT ACCEPT THIS COMMENT AS AN ANSWER !

tfewster
Cleanup Volunteer
0
 

Expert Comment

by:SpideyMod
ID: 7967140
per recommendation

SpideyMod
Community Support Moderator @Experts Exchange
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

My previous tech tip, Installing the Solaris OS From the Flash Archive On a Tape (http://www.experts-exchange.com/articles/OS/Unix/Solaris/Installing-the-Solaris-OS-From-the-Flash-Archive-on-a-Tape.html), discussed installing the Solaris Operating S…
Using libpcap/Jpcap to capture and send packets on Solaris version (10/11) Library used: 1.      Libpcap (http://www.tcpdump.org) Version 1.2 2.      Jpcap(http://netresearch.ics.uci.edu/kfujii/Jpcap/doc/index.html) Version 0.6 Prerequisite: 1.      GCC …
This video shows how to set up a shell script to accept a positional parameter when called, pass that to a SQL script, accept the output from the statement back and then manipulate it in the Shell.
In a previous video, we went over how to export a DynamoDB table into Amazon S3.  In this video, we show how to load the export from S3 into a DynamoDB table.

914 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now