1 2 | ftp stream tcp6 nowait root /usr/sbin/ftpd ftpd telnet stream tcp6 nowait root /usr/sbin/telnetd telnetd -a |
1 2 | ftp stream tcp6 nowait root /usr/sbin//tcpd ftpd telnet stream tcp6 nowait root /usr/sbin/tcpd telnetd -a |
1 | # refresh -s inetd |
1 | auth.info /var/adm/messages |
1 | local0.info /var/adm/wrappers.log |
1 | # refresh -s syslogd |
1 | daemon, daemon, ...: client, client, ...: option |
1 | ALL:ALL |
1 | ALLOCAL : allow |
1 | telnetd,sshd:.mydomain.com :allow |
1 2 | telnetd,sshd:.mydomain.com, .mydomain2.com :allow telnetd,sshd:192.168.4.10 , 192.168.6.: allow |
1 2 3 | telnetd,sshd:.mydomain.com :allow telnetd,sshd:192.168.4.10 , 192.168.6.: allow ftpd:.mydomain.com except uktrip1.mydomain.com, uktrip2.mydomain.com : allow |
1 2 | telnetd :192.168.8., 192.168.9.: deny telnetd :192.168.6.: allow |
1 | telnetd:192.168.6. except 192.168.8., 192.168.9.: allow |
1 2 | Oct 23 15:50:55 rs6000 auth|security|warning telnetd[270546]: refused connect from tardis |
1 | Oct 23 15:53:36 rs6000 auth|security:info sshd[262252]: refused connect from tardis |
1 2 | error ftpd[2605110]: warning:/etc/hosts.allow, line 2: host name/address mismatch: 192.168.7.12 != uktrn004.mydomain.com |
1 | ALLARANOID, mydomain:allow |
1 | tcpdchk –a | -v |
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 | # tcpdchk –v Using network configuration file:/etc/inetd.conf >>> Rule /etc/hosts.allow line 4:daemons:telnetd sshd warning:/etc/hosts.allow, line 4: sshd: no such process name in /etc/inetd.conf clients:192.168.4.10 192.168.5.access: granted >>> Rule /etc/hosts.allow line 5:daemons:ftpd clients:.mydomain.com EXCEPT uktrip1.mydomain.com uktrip2.mydomain.com access: granted >>> Rule /etc/hosts.deny line 1:daemons:ALL clients:ALL option: banners /etc/banners/deny option: DENY access: denied |
1 | tcpdmatch <daemon> <host> |
欢迎光临 电子技术论坛_中国专业的电子工程师学习交流社区-中电网技术论坛 (http://bbs.eccn.com/) | Powered by Discuz! 7.0.0 |