Solved

Disabling FTP in Unix

Posted on 2006-11-01
7
917 Views
Last Modified: 2013-12-04
We're trying to keep FTP from listening on our HP UX system.  We do this by commenting it out in services and in inetd, but after this happens we cannot establish a FTP (client) connection to another server.  Are we doing this right?  We want to be able to use FTP, but not have it listening on port 21.

Also, can anyone explain the difference between commenting out in services and commenting out in inetd.conf?
0
Comment
Question by:kryptotech
7 Comments
 
LVL 34

Assisted Solution

by:PsiCop
PsiCop earned 500 total points
ID: 17853441
Just comment it out in inetd. Leave it in /etc/services.
0
 
LVL 34

Accepted Solution

by:
PsiCop earned 500 total points
ID: 17853458
inetd.conf tells the inetd listening daemon what services are allowed. It is what listeds on port 21 and allows clients to connect to the FTP server.

/etc/services defines what ports are associated to what services, and is used by client and server software alike. However, it is merely an information source, it does not define running services.
0
 

Author Comment

by:kryptotech
ID: 17853514
Just to be clear, will FTP still say listening even if it's disabled in inetd?
0
Forrester Webinar: xMatters Delivers 261% ROI

Guest speaker Dean Davison, Forrester Principal Consultant, explains how a Fortune 500 communication company using xMatters found these results: Achieved a 261% ROI, Experienced $753,280 in net present value benefits over 3 years and Reduced MTTR by 91% for tier 1 incidents.

 
LVL 38

Expert Comment

by:yuzh
ID: 17854654
>>will FTP still say listening even if it's disabled in inetd?

No!
after you edit the inetd.conf, you should restart inetd  or reboot the box.
0
 
LVL 34

Expert Comment

by:PsiCop
ID: 17858540
As yuzh says, changes to inetd.conf require that you restart the inetd daemon, or reboot the server, in order to be effective. I'm not familiar with HP-UX so I'll default to suggesting a reboot.

inetd.conf is only read upon inetd's initialization.
0
 
LVL 48

Expert Comment

by:Tintin
ID: 17862995
Just a side note about /etc/services.

Entries in /etc/inetd.conf refer to service names defined in /etc/services.  If you remove/comment the entry in /etc/services, it means the associated entry in /etc/inetd.conf won't work.
0
 
LVL 34

Expert Comment

by:PsiCop
ID: 17867024
Good point - another reason not to futz with /etc/services.
0

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
bypass UAC - always notifiy 4 78
Applying GPO for specific requirement 5 60
Soundcloud.com 4 84
Suggestion for the first 90 days as sysadmin in new company ? 8 67
Many people tend to confuse the function of a virus with the one of adware, this misunderstanding of the basic of what each software is and how it operates causes users and organizations to take the wrong security measures that would protect them ag…
SHARE your personal details only on a NEED to basis. Take CHARGE and SECURE your IDENTITY. How do I then PROTECT myself and stay in charge of my own Personal details (and) - MY own WAY...
I've attached the XLSM Excel spreadsheet I used in the video and also text files containing the macros used below. https://filedb.experts-exchange.com/incoming/2017/03_w12/1151775/Permutations.txt https://filedb.experts-exchange.com/incoming/201…
Are you ready to implement Active Directory best practices without reading 300+ pages? You're in luck. In this webinar hosted by Skyport Systems, you gain insight into Microsoft's latest comprehensive guide, with tips on the best and easiest way…

733 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question