Security Basics mailing list archives
Re: restricting telnet via username
From: "Bob Radvanovsky" <rsradvan () unixworks net>
Date: Thu, 4 Mar 2004 12:02:13 -0600
See comments below.... ----- Original Message ----- From: "Gregory Dunlap" <gtdunlap () midsouth rr com> To: <ald2003 () users sourceforge net> Cc: "security-basics" <security-basics () securityfocus com> Sent: Wednesday, March 03, 2004 9:27 PM Subject: RE: restricting telnet via username
The server is the standard telnet server that comes with HPUX, the only config I've found is in inet.d so far and that just turns it off and on for boot. The client is a firm ware level OS on a scan gun by Intermic. This is not SSH, the OS on the scan gun is quite limited and can not run an ssh client. If I was using ssh it would be ideal since the AllowUser option is there. But I'm stuck with telnet. Any help on how to limit the telnet daemon to a list of users or only have the telnet server spawn off a process (the users are login in to run a app on the server, no other shell access is needed).
WRONG!!! if you want SSH for HP-UX, there are several places that you can go, starting with... http://hpux.cs.utah.edu/ They'll have OpenSSH, should have latest (or near latest) version. Nice site to know.... Cheers! Bob Radvanovsky [/unixworks] rsradvan () unixworks com "knowledge squared is information shared."
Any help is appreciated, Greg On Tue, 2004-03-02 at 18:34, Aditya, ALD [Aditya Lalit Deshmukh] wrote:-----Original Message----- From: Gregory Dunlap [mailto:gtdunlap () midsouth rr com] Sent: Saturday, February 28, 2004 10:25 AM To: security-basics Subject: restricting telnet via username Hello all, I'm attempting to restrict a telnet session of a group of users who need to run one application on a server. They login via telnet and
that
is the only option at the moment. They need to run a shell script and then that will launch the app. I've set the shell for these users to the shell script so they won't have access to anything but this app.
I
would like to restrict the telnet daemon further to allow only certain user names so they can't do a brute force attack. In sshd_config I've aways used allowd users setting but I don't see that in the hpux
telnet
config. Any help would be greatly appreciated.which os and which app combo ? if you are using windows then just add all the users that you want
telnet access to to TelnetUsers group and if you are using unix you will have tell which version and which os for us ( the list ) to help you
are u using telnet or ssh ? please post more info ... -aditya--------------------------------------------------------------------------
-
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off any course! All of our class sizes are guaranteed to be 10 students or
less
to facilitate one-on-one interaction with one of our expert instructors. Attend a course taught by an expert instructor with years of in-the-field pen testing experience in our state of the art hacking lab. Master the
skills
of an Ethical Hacker to better assess the security of your organization. Visit us at: http://www.infosecinstitute.com/courses/ethical_hacking_training.html --------------------------------------------------------------------------
-- --------------------------------------------------------------------------- Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off any course! All of our class sizes are guaranteed to be 10 students or less to facilitate one-on-one interaction with one of our expert instructors. Attend a course taught by an expert instructor with years of in-the-field pen testing experience in our state of the art hacking lab. Master the skills of an Ethical Hacker to better assess the security of your organization. Visit us at: http://www.infosecinstitute.com/courses/ethical_hacking_training.html ----------------------------------------------------------------------------
Current thread:
- restricting telnet via username Gregory Dunlap (Mar 01)
- Re: restricting telnet via username Ansgar -59cobalt- Wiechers (Mar 01)
- Re: restricting telnet via username Gabriel Orozco (Mar 02)
- RE: restricting telnet via username Aditya, ALD [Aditya Lalit Deshmukh] (Mar 03)
- RE: restricting telnet via username Gregory Dunlap (Mar 04)
- Re: restricting telnet via username Bob Radvanovsky (Mar 04)
- RE: restricting telnet via username Gregory Dunlap (Mar 04)
- <Possible follow-ups>
- Re: restricting telnet via username Justin_Andrusk (Mar 01)
- Re: restricting telnet via username Gabriel Orozco (Mar 03)
- RE: restricting telnet via username Todd Fencl (Mar 04)
- RE: restricting telnet via username Bully Cillóniz (Mar 04)