?
Solved

Controlling Telnet Access

Posted on 2003-03-27
7
Medium Priority
?
285 Views
Last Modified: 2013-12-27
How do I control Telnet and FTP access on my Sun Blade workstation running on Solaris 8? Is there a way where I can specify only a certain IP nodes to have access to that workstation.
What files do I edit?
0
Comment
Question by:mscim
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
7 Comments
 
LVL 18

Accepted Solution

by:
liddler earned 100 total points
ID: 8216799
You need to install tcp wrappers (www.sunfreeware.com)
Your /etc/inetd.conf is edited like like
ftp     stream  tcp     nowait  root    /usr/sbin/in.ftpd       in.ftpd
telnet  stream  tcp     nowait  root    /usr/sbin/in.telnetd    in.telnetd
becomes
ftp     stream  tcp     nowait  root    /usr/local/bin/tcpd     in.ftpd
telnet  stream  tcp     nowait  root    /usr/localbin/tcpd in.telnetd

You can then add the file /etc/hosts.deny containing the text
ALL : ALL
Now add the file /etc/hosts.allow with the following (as examples)
in.telnetd: 10.11.1.0/255.255.255.0 10.12.2.5
in.ftpd: 10.11.0.0/255.255.0.0 10.12.5.0/255.255.255.0 10.10.1.1


This would allow anyone with IP address beginning 10.11.1. to telnet in, and anyone from the specific IP 10.12.2.5
ftp is allowed from any 10.11 address, any 10.12.5 address and 10.10.1.1

Other tcp processes such as DNS, smtp and ssh can be configured to use tcp_trappers as well

HTH
0
 
LVL 38

Assisted Solution

by:yuzh
yuzh earned 100 total points
ID: 8217264
telnet/ftp is not secure (plain text), a sniffer can capture the user name and password. (you should disable them)

consider use secure shell/secure ftp instead of telnet/ftp,
you can download openssh (comes with sftp) from:
www.sunfreeware.com

0
 
LVL 14

Expert Comment

by:chris_calabrese
ID: 8218560
Hey, _I_ was going to suggest OpenSSH ;-)
0
VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

 
LVL 2

Expert Comment

by:colsey79
ID: 8233839
Another option, which could be viable if you have the correct support contract is to try Solaris 9. (if you have software support you can ask for the media to be sent to you)  It comes with both SunSSH (OpenSSH really) and TCP Wrappers all installed.  And what's even better, is if you encounter any problems, you can give Sun a call and they will be able to support your config.

Remember, if you get problems with your system after implementing TCP wrappers of OpenSSH, they will ask you to remove it.
0
 

Expert Comment

by:bluedragon_2
ID: 8566908
IPFilter is also another option you can get from sunfreeware
0
 
LVL 18

Expert Comment

by:liddler
ID: 10476829

No comment has been added lately, so it's time to clean up this TA.
I will leave a recommendation in the Cleanup topic area that this question is:

Points split liddler & yuzh

Please leave any comments here within the next four days.

PLEASE DO NOT ACCEPT THIS COMMENT AS AN ANSWER!

liddler
EE Cleanup Volunteer
0

Featured Post

VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In tuning file systems on the Solaris Operating System, changing some parameters of a file system usually destroys the data on it. For instance, changing the cache segment block size in the volume of a T3 requires that you delete the existing volu…
I promised to write further about my project, and here I am.  First, I needed to setup the Primary Server.  You can read how in this article: Setup FreeBSD Server with full HDD encryption (http://www.experts-exchange.com/OS/Unix/BSD/FreeBSD/A_3660-S…
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:
Suggested Courses
Course of the Month12 days, 5 hours left to enroll

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question