Redhat 7.3 security

ehedman · 02-15-2003, 04:13 PM

I have a redhat 7.3 server that I have problems accessing
with telnet and trying to set up as a Samba Server. The server is also a webserver and resides behind a router as a fire walll as does the rest of my network. As I have done on
other redhat servers, I turned off ipchains and turned on iptables. I can secure shell login from anywhere inside my
network. When I telnet, I get connection refused. I then tried allowing everything through. I stopped and cleared out all the iptables entries. I restarted iptables andentered the following commands with no error messages:

iptables -P INPUT ACCEPT
iptables -P OUTPUT ACCEPT
iptables -P FORWARD ACCEPT

I still get connection refused. When I enter:

iptables -L

it shows that these are the only policies and they are entered correctly. Any ideas?

unSpawn · 02-15-2003, 04:31 PM

Maybe a stupid question, but you have telnetd running?
What do the logs say (PAM|TCP wrappers/xinetd thing?)?

ehedman · 02-15-2003, 06:39 PM

I thought I did. I went into the services configuration and made sure xinetd was running (which it says is required for telnet). I double checked with ps -ef | grep xinetd and saw that it really was. telnet was checked to start at start up. The commands to start and stop the service were grayed out. I couldn't do it from the tool. Telnet it self runs from the command line on the server buts gets a connection refused message when I telnet out to any other server. I am a newbie. How do I check the logs?

mychl · 02-15-2003, 10:27 PM

xinetd running does not mean telnet is running....

Have a look in /etc/xinetd.d for a file called telnet, edit it and change the line that reads

disable yes

to

disable no

save the file and restart xinetd /etc/init.d/xinetd restart

hth

ehedman · 02-16-2003, 05:12 PM

I checked that the entry in the file in the
/etc/xinetd.d/telnet

was:

dasable no

I did an

/etc/init.d/xinetd restart

iIt gave me the okay message on shutting down and restarting the service. I still have the same problem. Attempts to telnet to the server get connection refused.
Secure shell logins work just fine.

What do I try next

Crashed_Again · 02-16-2003, 09:51 PM

What about your tcpwrappers? /etc/hosts.allow and /etc/hosts.deny ?

ehedman · 02-17-2003, 11:06 AM

I just checked. No entries in either the hosts.allow or
hosts.deny files. I just tried adding the entry
ALL: ALL

like i have in an old slackware box. It didn't work

geoffm33 · 02-18-2003, 11:06 AM

When you restarted xinetd, flushed iptables, etc, etc; what computer are you trying to connect in from?

While on the server you are trying to telnet into, can you type:

# telnet localhost

ehedman · 02-18-2003, 12:18 PM

telnet to localhost works

ehedman · 02-18-2003, 12:23 PM

I have tried connecting in from a couple of PCs running Windows 2000 and a couple of other Linux and SCO Unixware boxes on my local network. All have IP addresses in the same 192.168.1.* range. All have entries in the servers hosts file.