Solved

linux incoming connection

Posted on 2004-04-16
7
297 Views
Last Modified: 2010-03-18
If I'd like to allow certain remote hosts to log into my linux box, how do I specify those hosts (i.e. allow remote login)?   Can I type a command from a bash shell or do I save the name/ip, username of remote host in some file, and if so, which one is it and how can I specify?   Please let me know.
0
Comment
Question by:skyblue01
  • 3
  • 2
  • 2
7 Comments
 
LVL 8

Expert Comment

by:da99rmd
ID: 10840850
What service ftp etc. are you trying to stop allow access to ?
And  what linux distro are you using ?

/Rob
0
 
LVL 17

Expert Comment

by:owensleftfoot
ID: 10841631
You would put their hostnames (or ip addresses) in /etc/hosts.allow and put ALL:ALL in /etc/hosts.deny
0
 
LVL 8

Assisted Solution

by:da99rmd
da99rmd earned 50 total points
ID: 10841807
But thats just for indet.d and xinet.d services.

/Rob
0
What Security Threats Are You Missing?

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

 

Author Comment

by:skyblue01
ID: 10851478
>What service ftp etc. are you trying to stop allow access to ?
>And  what linux distro are you using ?

I'm just trying to allow ssh access from my windows box(say, hostname windows) to my linux box and was trying to setup the linux box to accept such incoming connection.   In my windows box, when I initiate an ssh connection to linux, I'll be needing a login name and a password.   This needs to be set up in linux, right?   How would I do that?

I'm using FedoraCoreI

>But thats just for indet.d and xinet.d services.

What do you mean by that?   You mean what I said above doesn't apply to /etc/host.allow and /etc/host.deny?
0
 
LVL 17

Accepted Solution

by:
owensleftfoot earned 300 total points
ID: 10853077
For ssh access all you need to do is make sure sshd is started. Its usually installed by default.Issue the command "chconfig sshd on" - if you get an error you will have to install the openssh-server rpm from your fedora installation cdroms. Then reissue the previous command. Then issue the command "service sshd start" to start the ssh server. Adding a user is simple. "useradd windows" will add a new user called windows. "passwd windows" will allow you to set the users password. To use ssh you will need an ssh clent for windows.
You can get a good free one at http://www.chiark.greenend.org.uk/~sgtatham/putty/

The bits about hosts.allow and hosts.deny were because I thought you wanted to only allow access to certain ip addresses. As da99 says this only applies to services run with the xinetd superserver. However most servers can be started from there - sshd included. But I guess you dont need hostbased authentification.
0
 

Author Comment

by:skyblue01
ID: 10854480
Thanks for the detailed explanation.   I'll see what I can do.
0
 
LVL 8

Expert Comment

by:da99rmd
ID: 10857335
You dont have to do a computer specific account to allow/disallow access you can as its described above access this account from anyware.

If you want to just be be able to access the sshd from you linuc computrer you have to block it in your firewall.
do you have a firewall running at this moment ?
If you want help setting up the rule just post back.

/Rob
 
0

Featured Post

Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

Join & Write a Comment

Suggested Solutions

I have seen several blogs and forum entries elsewhere state that because NTFS volumes do not support linux ownership or permissions, they cannot be used for anonymous ftp upload through the vsftpd program.   IT can be done and here's how to get i…
Note: for this to work properly you need to use a Cross-Over network cable. 1. Connect both servers S1 and S2 on the second network slots respectively. Note that you can use the 1st slots but usually these would be occupied by the Service Provide…
Internet Business Fax to Email Made Easy - With eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…
In this seventh video of the Xpdf series, we discuss and demonstrate the PDFfonts utility, which lists all the fonts used in a PDF file. It does this via a command line interface, making it suitable for use in programs, scripts, batch files — any pl…

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now