?
Solved

Disabling FTP in Unix

Posted on 2006-11-01
7
Medium Priority
?
923 Views
Last Modified: 2013-12-04
We're trying to keep FTP from listening on our HP UX system.  We do this by commenting it out in services and in inetd, but after this happens we cannot establish a FTP (client) connection to another server.  Are we doing this right?  We want to be able to use FTP, but not have it listening on port 21.

Also, can anyone explain the difference between commenting out in services and commenting out in inetd.conf?
0
Comment
Question by:kryptotech
7 Comments
 
LVL 34

Assisted Solution

by:PsiCop
PsiCop earned 2000 total points
ID: 17853441
Just comment it out in inetd. Leave it in /etc/services.
0
 
LVL 34

Accepted Solution

by:
PsiCop earned 2000 total points
ID: 17853458
inetd.conf tells the inetd listening daemon what services are allowed. It is what listeds on port 21 and allows clients to connect to the FTP server.

/etc/services defines what ports are associated to what services, and is used by client and server software alike. However, it is merely an information source, it does not define running services.
0
 

Author Comment

by:kryptotech
ID: 17853514
Just to be clear, will FTP still say listening even if it's disabled in inetd?
0
Evaluating UTMs? Here's what you need to know!

Evaluating a UTM appliance and vendor can prove to be an overwhelming exercise.  How can you make sure that you're getting the security that your organization needs without breaking the bank? Check out our UTM Buyer's Guide for more information on what you should be looking for!

 
LVL 38

Expert Comment

by:yuzh
ID: 17854654
>>will FTP still say listening even if it's disabled in inetd?

No!
after you edit the inetd.conf, you should restart inetd  or reboot the box.
0
 
LVL 34

Expert Comment

by:PsiCop
ID: 17858540
As yuzh says, changes to inetd.conf require that you restart the inetd daemon, or reboot the server, in order to be effective. I'm not familiar with HP-UX so I'll default to suggesting a reboot.

inetd.conf is only read upon inetd's initialization.
0
 
LVL 48

Expert Comment

by:Tintin
ID: 17862995
Just a side note about /etc/services.

Entries in /etc/inetd.conf refer to service names defined in /etc/services.  If you remove/comment the entry in /etc/services, it means the associated entry in /etc/inetd.conf won't work.
0
 
LVL 34

Expert Comment

by:PsiCop
ID: 17867024
Good point - another reason not to futz with /etc/services.
0

Featured Post

Evaluating UTMs? Here's what you need to know!

Evaluating a UTM appliance and vendor can prove to be an overwhelming exercise.  How can you make sure that you're getting the security that your organization needs without breaking the bank? Check out our UTM Buyer's Guide for more information on what you should be looking for!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

SHARE your personal details only on a NEED to basis. Take CHARGE and SECURE your IDENTITY. How do I then PROTECT myself and stay in charge of my own Personal details (and) - MY own WAY...
Container Orchestration platforms empower organizations to scale their apps at an exceptional rate. This is the reason numerous innovation-driven companies are moving apps to an appropriated datacenter wide platform that empowers them to scale at a …
Look below the covers at a subform control , and the form that is inside it. Explore properties and see how easy it is to aggregate, get statistics, and synchronize results for your data. A Microsoft Access subform is used to show relevant calcul…
Planning to migrate your EDB file(s) to a new or an existing Outlook PST file? This video will guide you how to convert EDB file(s) to PST. Besides this, it also describes, how one can easily search any item(s) from multiple folders or mailboxes…
Suggested Courses

621 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question