[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Sheflug] Networking

To: shef-lug [at] xxxxxxxxxxxxxxxxxxx
Subject: Re: [Sheflug] Networking
From: Barrie Bremner <xxxxx [at] xxxxxxxxxxxxxxxxx>
Date: Tue, 30 Oct 2001 21:51:17 +0000
Envelope-To: <shef-lug [at] list.sheflug.org.uk>
List-Help: <mailto:shef-lug-request [at] list.sheflug.org.uk?subject=help>
List-Id: Sheflug <shef-lug.list.sheflug.org.uk>
List-Post: <mailto:shef-lug [at] list.sheflug.org.uk>
List-Subscribe: <http://community.uklinux.net/mailman/listinfo/shef-lug>,<mailto:shef-lug-request [at] list.sheflug.org.uk?subject=subscribe>
List-Unsubscribe: <http://community.uklinux.net/mailman/listinfo/shef-lug>,<mailto:shef-lug-request [at] list.sheflug.org.uk?subject=unsubscribe>
Reply-To: shef-lug [at] xxxxxxxxxxxxxxxxxxx
Sender: shef-lug-admin [at] xxxxxxxxxxxxxxxxxxx

One thing - do you have a portscanner installed? Nmap?

Try 

nmap hostname

should show you what is running on the other machine.

If not, we can still figure it out.

>>>>> "Llewelyn" == richard davies <llewelyn.davies [at] eudoramail.com> writes:

    Llewelyn>  -- On Mon, 29 Oct 2001 23:50:39 Barrie Bremner wrote:

    >>  Assuming you're just testing, /etc/hosts.allow should be
    >> 
    >> ALL: ALL

    Llewelyn> Is currently ALL: 127.0.0.1 ALL: 192.168.0 Which I
    Llewelyn> assume is the loopback and everything on my private
    Llewelyn> network.

See Ian's and Alex's notes: should be

ALL: 127.0.0.1
ALL: 192.168.0.

(or ALL: ALL for the moment :-)

    >> /etc/hosts.deny shouldn't make any difference, because
    >> hosts.allow is checked first, and you told the system to allow
    >> everyone, but it should be empty (comments are OK.)

    Llewelyn> It is empty.

That's fine - for the moment. You should read man hosts.allow and the
other manpages referenced from there.

    >> 
    >> ps -aux | grep sshd

    Llewelyn> Nothing

OK, SSH isn't running, but judging what you have listed below, telnet
should be available once we sort things out - it will be possible to
mess with SSH later.

See man ssh, man sshd.

I'll stick with telnet for the moment.

    >> FTP and telnet are normally run from inetd or xinetd, have a
    >> look at /etc/inetd.conf or /etc/xinetd.d/ - check that inetd or
    >> xinetd is running (try ps -aux | grep inetd)

    Llewelyn> Nothing

MMmm. inetd doesn't look like it's running.

One of my Debian machines running inetd - you should expect similar:

phase:~# ps aux | grep inetd
root       157  0.0  2.6  1312  576 ?        S    Oct28   0:00 /usr/sbin/inetd
root      5386  0.0  1.8  1108  396 pts/0    S    22:36   0:00 grep inetd

    >> Uncomment the lines for the services you want to run in
    >> /etc/inetd.conf

    Llewelyn> ftp stream tcp nowait root /usr/sbin/tcpd in.ftpd -l -a
    Llewelyn> telnet stream tcp nowait root /usr/sbin/tcpd in.telnetd
    Llewelyn> pop-3 stream tcp nowait root /usr/sbin/tcpd ipop3d

    Llewelyn> These are the only services apparently running.

They're the services that will run once inetd had been started.

    Llewelyn> or look at the config files in /etc/xinetd.d
    Llewelyn> This file doesn't appear to exist on my system

OK, your machine uses "inetd" to control many of the services. Some of
the newer distros use "xinetd" - you'll generally have one or the
other - in this case it's inetd.

    >> (Re)start the service - there are scripts in
    >> /etc/init.d or /etc/rc.d/init.d/ (depends on your system) to do
    >> this:
    >> 
    >> e.g.
    >> 
    >> /etc/rc.d/init.d/xinetd start /etc/rc.d/init.d/xinetd restart
    >> /etc/rc.d/init.d/xinetd stop

    Llewelyn> These files do not appear to be here
    Llewelyn> /etc/rc.d/init.d/inet is the nearest to any of them

Therefore, try 

/etc/rc.d/init.d/inet start 

to start the inetd process, and in turn start ftp and telnet daemons.

As an aside, try poking around in that directory:

cd /etc/rc.d/init.d/
ls

man something

something status
something start
something restart
something stop

That's the easiest way to control the servers/services installed on
your machine.

Check the various systems are running - ps, grep and the scripts in
/etc/init.d/rc.d/ are your friend.

Try connecting to the machines again. Telnet as a normal user - root
shouldn't be allowed to telnet in, so it'll fail. Not much of a test
at the moment.

With all that lot done you should have:

* Allowed access to any and all services on the machine
* Started the inet "superserver"/services daemon to service connection
requests
* Configured inet to launch and control telnet, ftp (and POP3, but
I've just ignored that)

* Figured out what other things you have on your machine you can
control from the /etc/init.d/rc.d directory.

DNS can wait for the moment.

Cheers.

Baz.  

-- 
Barrie J. Bremner		OpenPGP public key ID: 5164F553
baz [at] barriebremner.com	http://barriebremner.com/

___________________________________________________________________

Sheffield Linux User's Group - http://www.sheflug.co.uk . 
To unsubscribe from this list send mail to 
shef-lug-request@list.sheflug.org.uk with the word
"unsubscribe" in the body of the message. 

  GNU the choice of a complete generation.

References:
- Re: [Sheflug] Networking
  - From: richard davies

Prev by Date: Re: [Sheflug] Networking
Next by Date: Re: [Sheflug] Keymapping/mouse error in XEmacs
Prev by thread: Re: [Sheflug] Networking
Next by thread: Re: [Sheflug] Networking
Index(es):
- Date
- Thread