LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Security (https://www.linuxquestions.org/questions/linux-security-4/)
-   -   Redhat 7.3 security (https://www.linuxquestions.org/questions/linux-security-4/redhat-7-3-security-45549/)

ehedman 02-15-2003 04:13 PM
Redhat 7.3 security
 
I have a redhat 7.3 server that I have problems accessing
with telnet and trying to set up as a Samba Server. The server is also a webserver and resides behind a router as a fire walll as does the rest of my network. As I have done on
other redhat servers, I turned off ipchains and turned on iptables. I can secure shell login from anywhere inside my
network. When I telnet, I get connection refused. I then tried allowing everything through. I stopped and cleared out all the iptables entries. I restarted iptables andentered the following commands with no error messages:

iptables -P INPUT ACCEPT
iptables -P OUTPUT ACCEPT
iptables -P FORWARD ACCEPT

I still get connection refused. When I enter:

iptables -L

it shows that these are the only policies and they are entered correctly. Any ideas?

unSpawn 02-15-2003 04:31 PM
Maybe a stupid question, but you have telnetd running?
What do the logs say (PAM|TCP wrappers/xinetd thing?)?

ehedman 02-15-2003 06:39 PM
I thought I did. I went into the services configuration and made sure xinetd was running (which it says is required for telnet). I double checked with ps -ef | grep xinetd and saw that it really was. telnet was checked to start at start up. The commands to start and stop the service were grayed out. I couldn't do it from the tool. Telnet it self runs from the command line on the server buts gets a connection refused message when I telnet out to any other server. I am a newbie. How do I check the logs?

mychl 02-15-2003 10:27 PM
xinetd running does not mean telnet is running....

Have a look in /etc/xinetd.d for a file called telnet, edit it and change the line that reads

disable yes

to

disable no

save the file and restart xinetd /etc/init.d/xinetd restart

hth

ehedman 02-16-2003 05:12 PM
I checked that the entry in the file in the
/etc/xinetd.d/telnet

was:

dasable no

I did an

/etc/init.d/xinetd restart

iIt gave me the okay message on shutting down and restarting the service. I still have the same problem. Attempts to telnet to the server get connection refused.
Secure shell logins work just fine.

What do I try next

Crashed_Again 02-16-2003 09:51 PM
What about your tcpwrappers? /etc/hosts.allow and /etc/hosts.deny ?

ehedman 02-17-2003 11:06 AM
I just checked. No entries in either the hosts.allow or
hosts.deny files. I just tried adding the entry
ALL: ALL

like i have in an old slackware box. It didn't work

geoffm33 02-18-2003 11:06 AM
might be a dumb question, but...
 
When you restarted xinetd, flushed iptables, etc, etc; what computer are you trying to connect in from?

While on the server you are trying to telnet into, can you type:

# telnet localhost

ehedman 02-18-2003 12:18 PM
telnet to localhost works

ehedman 02-18-2003 12:23 PM
I have tried connecting in from a couple of PCs running Windows 2000 and a couple of other Linux and SCO Unixware boxes on my local network. All have IP addresses in the same 192.168.1.* range. All have entries in the servers hosts file.


All times are GMT -5. The time now is 02:55 PM.