Solved

questions of solaris8 /AIX 4.3

Posted on 2002-06-21
7
204 Views
Last Modified: 2010-04-21
on solaris 8 and AIX 4.3, I donot want to close Telnet service, but only want to let some persons login. How can i do?

I know that I can use SMIT USER to limit a user,but I donot want to use SMIT tools!!

I donot want to limit telnet with IP address, but with username!! Like /etc/ftpusers.
0
Comment
Question by:hotbox
7 Comments
 
LVL 40

Expert Comment

by:jlevie
ID: 7100016
On Solaris you can change /etc/profile & /etc/.login to only allow specific users to login. Since those shell init scripts are executed first by all shells, it's a good place to invoke per-user limits. I don't have a copy at hand of the profile and .login that I use for that purpose but I'll try to remmeber to post a comment with them in it Monday. I'd imagine that a similar approach should work for AIX.
0
 
LVL 38

Expert Comment

by:yuzh
ID: 7100018
Your can edit /etc/hosts.allow file (create one if you don't have it on your system)

Add the following to the file:

telnet: 192.168.1.3,192.157.1.5, 192.147.1.*

Note:this will allow the machine (192.168.1.3,192.157.1.5)
     and the machine in the subnet 192.147.1 to telnet to
     your system.

     since telnet is not secure, you should installed ssh
to your system.

     secure sheel is available from:
     http://www.sunfreeware.com/
     for Solaris, or
     http://www.openssh.org
     for other systems
0
 

Author Comment

by:hotbox
ID: 7100594
I donot want to limit telnet with IP address, but with username!!
0
Announcing the Most Valuable Experts of 2016

MVEs are more concerned with the satisfaction of those they help than with the considerable points they can earn. They are the types of people you feel privileged to call colleagues. Join us in honoring this amazing group of Experts.

 
LVL 38

Accepted Solution

by:
yuzh earned 100 total points
ID: 7101670

   Intstall TCP/IP daemon wrapper package, and configure the wrappers to always perform client username
lookups.
0
 
LVL 51

Expert Comment

by:ahoffmann
ID: 7102094
change the shell in /etc/passwd to /bin/false for those users which should not login
0
 
LVL 20

Expert Comment

by:tfewster
ID: 7921442
No comment has been added lately, so it's time to clean up this Topic Area.
I will leave a recommendation for this question in the Cleanup topic area as follows:

- Answered by yuzh

Please leave any comments here within the next 7 days

PLEASE DO NOT ACCEPT THIS COMMENT AS AN ANSWER !

tfewster
Cleanup Volunteer
0
 

Expert Comment

by:SpideyMod
ID: 7967140
per recommendation

SpideyMod
Community Support Moderator @Experts Exchange
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

A metadevice consists of one or more devices (slices). It can be expanded by adding slices. Then, it can be grown to fill a larger space while the file system is in use. However, not all UNIX file systems (UFS) can be expanded this way. The conca…
Why Shell Scripting? Shell scripting is a powerful method of accessing UNIX systems and it is very flexible. Shell scripts are required when we want to execute a sequence of commands in Unix flavored operating systems. “Shell” is the command line i…
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:

840 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question