Find the answer to your Linux question:
Results 1 to 5 of 5
Dear Users, I am using RedHat Linux 8.0. I dont want my users access SERVER though telnet from other machines (like telnet 192.168.0.1) only root can access SERVER from others ...
Enjoy an ad free experience by logging in. Not a member yet? Register.
  1. #1
    Just Joined!
    Join Date
    Mar 2004
    Location
    karachi
    Posts
    45

    Block Telnet 4 users


    Dear Users,

    I am using RedHat Linux 8.0.
    I dont want my users access SERVER though telnet from other machines
    (like telnet 192.168.0.1) only root can access SERVER from others machines.

    simply i want telnet block for users, only open on root

  2. #2
    Just Joined!
    Join Date
    Jul 2004
    Location
    UK
    Posts
    77
    You can use /etc/hosts.allow to allow access from certain IP addresses
    and /etc/hosts.deny to block access from certain IP addresses. You have to make sure the following line is in /etc/xinetd.d/telnet for TCP Wrappers to work:

    Code:
    Server             =/usr/sbin/in.telnetd
    In hosts.allow you can put:
    Code:
    ALL: 192.168.1.1
    ...etc

    And in hosts.deny
    Code:
    ALL: ALL
    That way only IP addresses in hosts.allow will be allow access through to your machine.

    Then in /etc/xinetd.d/telnet add the line:

    Code:
    no_access =
    e.g.
    Code:
    no_access = bob
    This will limit the access to certain Linux users.

    I would have to mention that having root access through Telnet is a bad idea. It would be better to allow one account access that only you know and then su when you are logged in.

    But that's just personal preference.

    Hope this helps

    Armage

  3. #3
    Linux Engineer
    Join Date
    May 2003
    Location
    Greece / Athens
    Posts
    1,169
    after making these changes i would suggest to use ssh..it's more secure as no simple text passwords are "travelling" through network..
    Linux For Ever!

  4. #4
    Just Joined!
    Join Date
    Jul 2004
    Location
    UK
    Posts
    77
    Good call....if you are using Telnet from Win machines Putty is a good SSH program to use instead of Telnet.

    Armage

  5. #5
    Linux Guru kkubasik's Avatar
    Join Date
    Mar 2004
    Location
    Lat: 39:03:51N Lon: 77:14:37W
    Posts
    2,396
    3's the charm! also openssh has lots of features that make it more powerful and more secure then telnet, namely x11 packet forwarding, acts like vnc, basicaly if you have a workstation running x, start it and then
    Code:
    ssh -X qub@333
    and you will get the gui off the server, great if you have some numbercruching vodoo god server and crappyass clients, but still cool.
    Avoid the Gates of Hell. Use Linux
    A Penny for your Thoughts

    Formerly Known as qub333

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •