HP3000-L Archives

November 2005, Week 4

HP3000-L@RAVEN.UTC.EDU
Options: Use Monospaced Font
Show Text Part by Default
Show All Mail Headers

Message: [<< First] [< Prev] [Next >] [Last >>]
Topic: [<< First] [< Prev] [Next >] [Last >>]
Author: [<< First] [< Prev] [Next >] [Last >>]

Print Reply
Subject:
Re: INETDSEC.NET.SYS
From:
Matthew Perdue <[log in to unmask]>
Reply To:
Matthew Perdue <[log in to unmask]>
Date:
Tue, 22 Nov 2005 12:52:43 -0600
Content-Type:
text/plain
Parts/Attachments:
text/plain (29 lines) 
Quoting "James B. Byrne" <[log in to unmask]>:

> Can some kind soul confirm for me that the following entries in
> INETDSEC.NET.SYS accomplish what I want:
>
> # deny tftp from everywhere
> tftp            deny    0-255
>
> # allow ftp and telnet connections to originate only from clients
> # on hosts aaa.bbb.ccc.0 to 127 and xxx.yyy.zzz.0 to 127
>
> ftp             allow   aaa.bbb.ccc.0-127 xxx.yyy.zzz.0-127
> telnet          allow   aaa.bbb.ccc.0-127 xxx.yyy.zzz.0-127
>
> Do I apprehend the use of this file correctly or am I missing
> something?
>
> Regards,
> Jim

The easiest way to deny tftp from everywhere is:

#tftp       whateveryouwanttohavehere'causeitwon'tmatter

Your ftp and telnet entries look fine.

* To join/leave the list, search archives, change list settings, *
* etc., please visit http://raven.utc.edu/archives/hp3000-l.html *

ATOM RSS1 RSS2