Banned telnet on a HP-UNIX

[hawkeye71]

I am new to UNIX. I want that no one, except the root, have the previlige to telnet into the machine. So I created a user, and kept it in the staff group, this is not a root gid. the uid for the user was also not '0'. However, the user were still able to telnet in to the HP machine. I know about the inetd.conf file, it shows that only root can telnet with nowait.

In conclusion, I do not want anybody except the root to telnet into the HP Machine.

 

[Guest_imported]

Why would you set up a user if you don't want them to telnet into the system? If they need to ftp something to or from the system, set up anonymous ftp, which will restrict them to just wherever you want them to go.

 

[unixqueen]

Hi,

If you only want root to be able to log into the machine, then create a /etc/nologin file.

Cheers
Queenie

 

[bi]

Yes that would work, but the question still is, why create a user? If the user needs to ftp to/from the box, /etc/nologin will prevent that.

 

[bi]

Oops. Forgot to add that /etc/nologin disappears when the box is booted.

Why not just deactivate the user?