Solved

questions of solaris8 /AIX 4.3

Posted on 2002-06-21
7
206 Views
Last Modified: 2010-04-21
on solaris 8 and AIX 4.3, I donot want to close Telnet service, but only want to let some persons login. How can i do?

I know that I can use SMIT USER to limit a user,but I donot want to use SMIT tools!!

I donot want to limit telnet with IP address, but with username!! Like /etc/ftpusers.
0
Comment
Question by:hotbox
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
7 Comments
 
LVL 40

Expert Comment

by:jlevie
ID: 7100016
On Solaris you can change /etc/profile & /etc/.login to only allow specific users to login. Since those shell init scripts are executed first by all shells, it's a good place to invoke per-user limits. I don't have a copy at hand of the profile and .login that I use for that purpose but I'll try to remmeber to post a comment with them in it Monday. I'd imagine that a similar approach should work for AIX.
0
 
LVL 38

Expert Comment

by:yuzh
ID: 7100018
Your can edit /etc/hosts.allow file (create one if you don't have it on your system)

Add the following to the file:

telnet: 192.168.1.3,192.157.1.5, 192.147.1.*

Note:this will allow the machine (192.168.1.3,192.157.1.5)
     and the machine in the subnet 192.147.1 to telnet to
     your system.

     since telnet is not secure, you should installed ssh
to your system.

     secure sheel is available from:
     http://www.sunfreeware.com/
     for Solaris, or
     http://www.openssh.org
     for other systems
0
 

Author Comment

by:hotbox
ID: 7100594
I donot want to limit telnet with IP address, but with username!!
0
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 38

Accepted Solution

by:
yuzh earned 100 total points
ID: 7101670

   Intstall TCP/IP daemon wrapper package, and configure the wrappers to always perform client username
lookups.
0
 
LVL 51

Expert Comment

by:ahoffmann
ID: 7102094
change the shell in /etc/passwd to /bin/false for those users which should not login
0
 
LVL 21

Expert Comment

by:tfewster
ID: 7921442
No comment has been added lately, so it's time to clean up this Topic Area.
I will leave a recommendation for this question in the Cleanup topic area as follows:

- Answered by yuzh

Please leave any comments here within the next 7 days

PLEASE DO NOT ACCEPT THIS COMMENT AS AN ANSWER !

tfewster
Cleanup Volunteer
0
 

Expert Comment

by:SpideyMod
ID: 7967140
per recommendation

SpideyMod
Community Support Moderator @Experts Exchange
0

Featured Post

The Ultimate Checklist to Optimize Your Website

Websites are getting bigger and complicated by the day. Video, images, custom fonts are all great for showcasing your product/service. But the price to pay in terms of reduced page load times and ultimately, decreased sales, can lead to some difficult decisions about what to cut.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Let's say you need to move the data of a file system from one partition to another. This generally involves dismounting the file system, backing it up to tapes, and restoring it to a new partition. You may also copy the file system from one place to…
My previous tech tip, Installing the Solaris OS From the Flash Archive On a Tape (http://www.experts-exchange.com/articles/OS/Unix/Solaris/Installing-the-Solaris-OS-From-the-Flash-Archive-on-a-Tape.html), discussed installing the Solaris Operating S…
Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…
This video shows how to set up a shell script to accept a positional parameter when called, pass that to a SQL script, accept the output from the statement back and then manipulate it in the Shell.

724 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question