Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

questions of solaris8 /AIX 4.3

Posted on 2002-06-21
7
Medium Priority
?
208 Views
Last Modified: 2010-04-21
on solaris 8 and AIX 4.3, I donot want to close Telnet service, but only want to let some persons login. How can i do?

I know that I can use SMIT USER to limit a user,but I donot want to use SMIT tools!!

I donot want to limit telnet with IP address, but with username!! Like /etc/ftpusers.
0
Comment
Question by:hotbox
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
7 Comments
 
LVL 40

Expert Comment

by:jlevie
ID: 7100016
On Solaris you can change /etc/profile & /etc/.login to only allow specific users to login. Since those shell init scripts are executed first by all shells, it's a good place to invoke per-user limits. I don't have a copy at hand of the profile and .login that I use for that purpose but I'll try to remmeber to post a comment with them in it Monday. I'd imagine that a similar approach should work for AIX.
0
 
LVL 38

Expert Comment

by:yuzh
ID: 7100018
Your can edit /etc/hosts.allow file (create one if you don't have it on your system)

Add the following to the file:

telnet: 192.168.1.3,192.157.1.5, 192.147.1.*

Note:this will allow the machine (192.168.1.3,192.157.1.5)
     and the machine in the subnet 192.147.1 to telnet to
     your system.

     since telnet is not secure, you should installed ssh
to your system.

     secure sheel is available from:
     http://www.sunfreeware.com/
     for Solaris, or
     http://www.openssh.org
     for other systems
0
 

Author Comment

by:hotbox
ID: 7100594
I donot want to limit telnet with IP address, but with username!!
0
Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

 
LVL 38

Accepted Solution

by:
yuzh earned 400 total points
ID: 7101670

   Intstall TCP/IP daemon wrapper package, and configure the wrappers to always perform client username
lookups.
0
 
LVL 51

Expert Comment

by:ahoffmann
ID: 7102094
change the shell in /etc/passwd to /bin/false for those users which should not login
0
 
LVL 21

Expert Comment

by:tfewster
ID: 7921442
No comment has been added lately, so it's time to clean up this Topic Area.
I will leave a recommendation for this question in the Cleanup topic area as follows:

- Answered by yuzh

Please leave any comments here within the next 7 days

PLEASE DO NOT ACCEPT THIS COMMENT AS AN ANSWER !

tfewster
Cleanup Volunteer
0
 

Expert Comment

by:SpideyMod
ID: 7967140
per recommendation

SpideyMod
Community Support Moderator @Experts Exchange
0

Featured Post

[Webinar] Lessons on Recovering from Petya

Skyport is working hard to help customers recover from recent attacks, like the Petya worm. This work has brought to light some important lessons. New malware attacks like this can take down your entire environment. Learn from others mistakes on how to prevent Petya like worms.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

My previous tech tip, Installing the Solaris OS From the Flash Archive On a Tape (http://www.experts-exchange.com/articles/OS/Unix/Solaris/Installing-the-Solaris-OS-From-the-Flash-Archive-on-a-Tape.html), discussed installing the Solaris Operating S…
Java performance on Solaris - Managing CPUs There are various resource controls in operating system which directly/indirectly influence the performance of application. one of the most important resource controls is "CPU".   In a multithreaded…
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
In a previous video, we went over how to export a DynamoDB table into Amazon S3.  In this video, we show how to load the export from S3 into a DynamoDB table.
Suggested Courses

609 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question