[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] Wrapping Telnet

Subject: Re: [cobalt-users] Wrapping Telnet
From: "Brian Curtis" <webmaster@xxxxxxxxxxx>
Date: Tue Mar 14 04:53:28 2000
Organization: Pomfret Computer Technologies

Jossi,

> I need to wrap Telnet access so only specific IP addresses can gain root
> access. I need this so I can telnet remotely. How do you do this? I don;t
> want to keep Telnet open with root access due to security.

Put the following in /etc/hosts.deny:

in.telnetd: ALL

Then the following in /etc/hosts.allow:

in.telnetd: 192.168.1.2,machine.your.domain

This turns off telnet access for 'ALL', then enables it for specific IP #s /
hosts.  If you are connecting from an ISP which assigns dynamic IP #s, use
partial IPs and hosts in hosts.allow.  ex:

in.telnetd: 192.168.1.,.isp.com

Notice the IP ends with a '.' and the hostname begins with a '.', allowing
192.168.1.* and *.isp.domain.  You can add as many IP/host names as needed
by separating them with a comma.

Be careful implementing the above - you can easily lock yourself out of the
box via telnet if you enter the wrong IP # or host name.

Brian Curtis

Follow-Ups:
- Re: [cobalt-users] Wrapping Telnet
  - From: Jeff Lasman

References:
- [cobalt-users] Wrapping Telnet
  - From: Jossi Fresco

Prev by Date: RE: [cobalt-users] root login on RaQ3
Next by Date: [cobalt-users] {cobalt users} HTML
Previous by thread: [cobalt-users] Wrapping Telnet
Next by thread: Re: [cobalt-users] Wrapping Telnet

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index