I am looking for a way to deny telnet and ssh to one specific user. So far I've only tested with telnet and my attempts have been limited to various hosts.deny entries:
None of these work. The only thing I've found that does work is:in.telnetd : IP_addressBut this is only a semi-viable solution because we will soon have multiple logins for the one username from different servers and sub-nets. Ideally, I'd like to be able to deny telnet and ssh access to this username regardless of where the login originates. I suppose it would be possible to specify each server IP, but that'll be a bear to maintain
I want to log the user name and password passed through the default telnet client on Fedora (7 to 11) system.I have thought of something like this:(Download Telent client src)->(modify src)->(compile and install)but i am not sure...
I have a question about telnet.Is there any way to configure a telnet server without disable firewall.I am using redhat 5.2 and fedora 12.I have lack of knowledge about firewall.
i want to disable the su command on a server so that users cant run the su command i removed the comment from the 3 and 5 line in /etc/pam.d/su file but it doesnt seem to work the file is shown below
#%PAM-1.0 auth sufficient pam_rootok.so # Uncomment the following line to implicitly trust users in the "wheel" group.
Bios is a good recommendation but will that affect the fan speed? I know about the acpi=off option, this does not work properly- even on suse. Maybe noapic would work better? Really is there a cover all command line instruction (for all distros) to turn the annoying thing off? Main problem occurs when watching the telly and the screensaver kicks in, with suze it turns the sound off as well, even after you have re-entered the password
Recently, when we updated our OS, we got a new tcsh feature enabled by default. Whenever I type a command that tcsh doesn't recognize, I get an annoying spelling correction like: % cats CORRECT>cast (y|n|e|a)?
I want to disable this feature and allow misspellings to error out like: % cats cats: Command not found. Is my enter key somehow getting re-bound? What could be causing this?
I am using Fedora 14. By default Security Enhanced Linux is enabled in Fedora 14. Now is there any way to disable it by command line and then again enable it through command line.
I have a test socket on a server. If I connect to it using telnet, I get exactly the response I expect. So I know the socket works, and the script on the server works:
Code: my-desktop:~$ telnet 192.168.1.1 3333 Trying 192.168.1.1... Connected to 192.168.1.1. Escape character is '^]'. RAM: 90 % Free ( 2793 M free, 3082 M total)
Connection closed by foreign host. And if I script it, I get almost the same response from Telnet, but still a valid response from the socket. So I know that my script works:
I've worked exclusively in Windows. I can handle that.I've worked exclusively in DOS (a long time ago!). I can handle that.I've worked exclusively in Unix.I can handle that.Right now, I am developing a command-line (python) application on a Windows machine, testing it in a DOS box (i.e. Windows' Command prompt), and then deploying it to Linux, and running it with PuTTY.
I cannot handle that. My productivity drops dramatically when CTRL-C cuts in one window (Windows) and kills the process in another (DOS, Linux).My productivity drops dramatically when Enter copies the selection in one window (DOS), and deletes the selection in another (Windows), and runs the current half-edited command in the third (PuTTY).My productivity drops dramatically when I cannot hit Undo, Home or End.The Solution I am Seeking
An SSH/Bash command-line client that runs on Windows and, to the extent possible, uses all the standard Windows shortcuts (Cut, Copy, Paste, Undo, Home, End, Insert, Shift-Arrows, etc.) work on a bash command line. Bonus points if it puts the cursor between letters, rather than on them.Plus, an equivalent DOS command-line drop-in that runs on Windows, and provides the same interface.need to be special buttons to actually transfer CTRL codes (like CTRL-C) through in the cases I need them.I suspect the SSH client will need to be specific to a shell (so it knows when it is at the command prompt, and when it is inside a running app.)I know there are many SSH clients, but I am looking for advice for a particular need.PuTTY feels like an escape route for Unix programmers stuck on Windows. I am the opposite.Can anyone recommend one (or maybe a combination of an SSH client and an Command-Line replacement)?
Update: After seeing the early answers here, I turned my requirements into a blog article, which may give more background in the direction I am looking.
Can I make my messages directly appear at client from server? Normally we type tailf /var/log/messages to see messages sent by other machine. So can I send my messages directly at command prompt?
I've used the following script here: [URL] to upgrade Alsa to 1.0.21 in Ubuntu 8.04. Now whenever I run:
Code:
sudo shutdown -h <time> or sudo reboot from the terminal I get a rather annoying beep sound. What's even more annoying is if I use the shutdown command to specify a time I get a beep every 10 minutes or so. I've tried disabling the terminal beep in the terminal profile, disabling the beep in System/Preferences/Sound, adding "blacklist pcspkr" to /etc/modprobe.d/blacklist, and running gconf-editor from the terminal and setting /desktop/gnome/peripherals/keyboard/bell_mode to 'off' rather than 'on'.
I am trying to find the difference between the above two services. Both are under xinetd and can someone please explain the difference between them (is one more secure than the other one?)
Is there a non-root shell command that can tell me if a user's account is disabled or not? note that there is a fine distinction between LOCKING and DISABLED:
LOCKING is where you prepend ! or * or !! to the password field of the /etc/passwd file. On Linux systems that shadow the passwords, this marker flag may be placed in /etc/shadow instead of /etc/passwd. Password locking can be done (at a shell prompt) via password -l username (as root) to lock the account of username, and the use of the option -u will unlock it.
DISABLING an account is done by setting the expiration time of the user account to some point in the past. This can be done with chage -E 0 username, which sets the expiration date to 0 days after the Unix epoch. Setting it to -1 will disable the use of the expiration date.
The effect of locking to to prevent the login process from using a supplied password to hash correctly against the saved hash (by virtue of the fact that the pre-pended marker character(s) are not valid output character(s) for the hash, thus no possible input can ever be used to generate a hash that would match it). The effect of disabling is to prevent any process from using an account because the expiration date of the account has already passed.For my situation, the use of locking is not sufficient because a user might still be able to login, e.g. using ssh authentication tokens, and processes under that user can still spawn other processes. Thus, we have accounts that are enabled or disabled, not just locked. We already know how to disable and enable the account - it requires root access and the use of chage, as shown above.To repeat my question: is there a shell command which can be run without root privileges which can output the status of this account expiration info for a given user? this is intended for use on a Red Hat Enterprise 5.4 system.The output is being returned to a java process which can then parse the output as needed, or make use of the return code.
I have Debian 7 running on RPi2 with Kodi. My NFS server is running on Slackware 14.1 which doesn't have full support for nfs4. I think this is causing some slowdowns/extra time when trying to stream video. Debian 7 by default mounts NFS as nfsv4, I would to like to disable this if possible. If so how?
i want to disable all DHCP request, can i turn off the client that if a MAC address changes a dhcp request is not automatically made?reason for this: I have HP blade running with an Intel NC260M mezzanine card running with virtual connect. I have experienced problems with firmware levels with this card where the virtual connect mac address is ignored and the real MAC displayed. As we are using bonds on the servers and have 6 NICs installed we have to tie down the MAC address to a bond. A blade was replaced today without the firmware update and the real MAC appeared, a dhcp request was made and my-eth[2-3] and resolv.conf files were over-written by the dhcp supplied
In my Windows environment, I use email client such as Microsoft Outlook to connect to our email server to send email with the following configuration:
Incoming server (POP3): 995 - (requires with SSL) Outgoing server (SMTP): 465 - (use encrypted connection SSL)
[code]....
And the mail server requires user ID login and password.how do I setup a text command based email client in my Linux (Centos 5.1) to send out email through the existing email server above, which is in another machine? The email client has to be text command based because I need to use command line to send notification email from anothar application installed in my Linux (Centos 5.1) Since the email client will only be used to send email notification, I don't require setting up of an email server in my linux.
I have Ubuntu 10.04 with Gnome. Whenever I put in a blank CD/DVD an icon on the desktop appears named "Blank CD/DVD" and a window appears asking me what I want to do with it. How do I disable the window and the icon from the desktop?
