we have only telnet and ftp running:
# echo stream tcp nowait MANAGER.SYS internal
# echo dgram udp nowait MANAGER.SYS internal
# daytime stream tcp nowait MANAGER.SYS internal
# daytime dgram udp nowait MANAGER.SYS internal
# time stream tcp nowait MANAGER.SYS internal
# time dgram udp nowait MANAGER.SYS internal
# discard stream tcp nowait MANAGER.SYS internal
# discard dgram udp nowait MANAGER.SYS internal
# chargen stream tcp nowait MANAGER.SYS internal
# chargen dgram udp nowait MANAGER.SYS internal
telnet stream tcp nowait MANAGER.SYS internal
# bootps dgram udp wait MANAGER.SYS /SYS/NET/BOOTPD bootpd
# tftp dgram udp wait USER.TFTP /SYS/NET/TFTPD tftpd
ftp stream tcp nowait MANAGER.SYS /SYS/ARPA/FTPSRVR ftpsrvr
You can definetly stop tftp (trivial ftp).
telnet and ftp are the listening processes so that you will stop the incoming traffic.
Best regards, Andreas Schmidt, CSC, Germany
Robert Mills <[log in to unmask]>@RAVEN.UTC.EDU> on
05/04/2002 15:04:26
Please respond to Robert Mills <[log in to unmask]>
Sent by: HP-3000 Systems Discussion <[log in to unmask]>
To: [log in to unmask]
cc:
Subject: [HP3000-L] Internet Services
Environment: 979/200 running MPE/iX 6.5 + all reactive patches.
Our INETDCNF currently looks as follows:
echo stream tcp nowait MANAGER.SYS internal
echo dgram udp nowait MANAGER.SYS internal
daytime stream tcp nowait MANAGER.SYS internal
daytime dgram udp nowait MANAGER.SYS internal
time stream tcp nowait MANAGER.SYS internal
time dgram udp nowait MANAGER.SYS internal
discard stream tcp nowait MANAGER.SYS internal
discard dgram udp nowait MANAGER.SYS internal
chargen stream tcp nowait MANAGER.SYS internal
chargen dgram udp nowait MANAGER.SYS internal
telnet stream tcp nowait MANAGER.SYS internal
tftp dgram udp wait USER.TFTP /SYS/NET/TFTPD tftpd
swat stream tcp nowait.400 MGR.SAMBA /usr/local/samba/bin/swat swat
-a
ftp stream tcp nowait MANAGER.SYS /SYS/ARPA/FTPSRVR ftpsrvr
My questions are:
1) Would removal of the 'ftp' entry ONLY prevent inbound ftp access OR
would
it have additional side-effects?
2) Would removal of the 'telnet' entry ONLY prevent inbound telnet access
OR
would it also prevent outbound telnet?
3) As we don't use bootp then is the 'tftp' entry required?
regards,
*****************************
Robert W.Mills, Systems Development Manager, Windsong Services
Electron House, Cray Avenue, St. Mary Cray, Kent BR5 3PN, ENGLAND
Tel: +44 (0)1689.870622 x 3005 Fax: +44 (0)1689 899026
[log in to unmask]
********************************
The thoughts, comments, and opinions expressed herein are mine.
They do not reflect those of my employer, nor anyone else.
********************************
***Confidentiality Notice: This e-mail message, including any attachments,
is for the sole use of the intended recipients and may contain confidential
and privileged information. Any unauthorized review, use, disclosure or
distribution is prohibited. If you are not the intended recipient, please
contact the sender by reply e-mail and destroy all copies of the original
message.
* To join/leave the list, search archives, change list settings, *
* etc., please visit http://raven.utc.edu/archives/hp3000-l.html *
* To join/leave the list, search archives, change list settings, *
* etc., please visit http://raven.utc.edu/archives/hp3000-l.html *
|