Telnet 1

[AIXtexas]

Is is possible to turn off telnet (port 23) for a particular user? Thus, forcing them to use SSH (port 22) to connect.

Thanks,
Shane

 

[Olivrenault]

I don't know how to answer, but you can close any access via telnet by modifying the /etc/inetd.conf

 

[p5wizard]

If you put some code like the following in /etc/profile

case ${LOGNAME} in
 jeb|george|condy)
  if ps xww ${PPID}|grep -q telnetd
  then
   echo "Sorry ${LOGNAME}, you can't use telnet - please use ssh instead..."
   sleep 5
   exit
  fi
  ;;
esac

But be advised, Your local changes to /etc/profile are bound to get written over when you next upgrade the OS...

Also you want to make absolutely sure the code is functioning properly, or risk not getting back into the server yourself without too much of a hassle - try it out on a test box first...

HTH,

p5wizard

 

[letis]

hello,

unless I'm wrong somewhere, in the caracteristics of an user, you can select if he may login remotely (this does not affect only telnet but rsh and rlogin too),

(smitty users => change / sow caracteristics of a user)

regards

 

[AIXtexas]

I was told by IBM that if I disable remote login, that would also disable access via SSH.

Shane