Search the web
Sign In
New User? Sign Up
lucknow-lug · Uttar Pradesh Linux Users Group
  • Members Only
  • Post
  • Files
  • Photos
  • Links
  • Database
  • Members
  • Calendar
  • Promote
  • Groups Labs (Beta)
? Already a member? Sign in to Yahoo!

Yahoo! Groups Tips

Did you know...
Want to share photos of your group with the world? Add a group photo to Flickr.

Best of Y! Groups

   Check them out and nominate your group.
Having problems with message search? Fill out this form to ensure your group is one of the first to be migrated to the new message search system.

Messages

   Messages Help
Message #
Search:
Advanced
regarding RHCE examination   Message List  
Reply | Forward Message #195 of 247 |
Re: [lucknow-lug] Re: regarding RHCE examination



Hi Our group has become active it seems..
Anuj has given a very good view on configuring the services.
Keep going.
Thanks

--- On Wed, 2/7/08, anujsingh_1 <no_reply@yahoogroups.com> wrote:
From: anujsingh_1 <no_reply@yahoogroups.com>
Subject: [lucknow-lug] Re: regarding RHCE examination
To: lucknow-lug@yahoogroups.com
Date: Wednesday, 2 July, 2008, 12:22 AM

--- In lucknow-lug@ yahoogroups. com, "kvbiju22" <kvbiju22@.. .> wrote:
>
> --- In lucknow-lug@ yahoogroups. com, "pcy1988" <pcy1988@> wrote:
> >
> > in RHCE examination if a question is asked that "configure a ftp
server
> > for your local system and rest of the network should not be able
to
> > access your ftp repository".
> > let assume that i configured the server correctly, but problem is
> > related with denying access.
> > should we simply use the file "/etc/hosts. deny" or IPTABLES.
> > which one will be better.
> > is it necessary to apply netfilter rule to all server related
question.
> >
>
> I think the case is similar when we configure telnet, where we can
> deny the access by editing the file /etc/xinetd. d/telnet. Open the
> file in any editor and add a line
> only_from = 172.25.0.0 where 172.25.0.0 is your local network.
> Restart the servie xinetd . This would solve the problem in
telnet.It
> should work for ftp too, I beleive..
> Hope Anooj will have a better solution
> Try it once
>
The straight forward method is using tcp-wrappers i.e. /etc/hots.deny
files, as devilisback said.
we can also configure the same using xinetd a more comprehensive
approach.

f.e. to integrate vsftpd with xinetd we need to take following steps.

1). Create a file /etc/xinetd. d/vsfpt with the following entries
# default: off
# description: The vsftpd FTP server serves FTP connections. It uses \
# normal, unencrypted usernames and passwords for authentication.
service ftp
{
disable = no
socket_type = stream
wait = no
user = root
server = /usr/sbin/vsftpd
nice = 10
#for your particular requirement to disallow all in the network
only_from = 127.0.0.1
}

2). Edit your /etc/vsftpd/ vsftpd.conf file and comment out line
with "listen=YES"

3). Restart or reload the xinetd service.
/sbin/service xinetd reload

Now test your configuration with
netstat -a |grep ftp

also
To avoid port conflict at boot time turn off the vsftpd service
chkconfig vsftpd off
As of now our vsftpd is integrated with xinetd make sure that xinetd
starts automatically.
chkconfig xinetd on

Anuj Singh


Share files, take polls, and make new friends - all under one roof. Click here.
Fri Jul 4, 2008 5:58 am

Show Message Option
kvbiju22
Offline Offline
Send Email Send Email

Forward 		Message #195 of 247 |
Expand Messages Author Sort by Date

in RHCE examination if a question is asked that "configure a ftp server for your local system and rest of the network should not be able to access your ftp... 		pcy1988
Offline Send Email 		Jun 27, 2008
6:09 pm

In any of the questions which is regarding the deinal of service ou should use /etc/hosts.deny. Use of IPTABLES in exam is not permissible if you use iptables...
monsterisback
Offline Send Email 		Jun 30, 2008
10:42 am

... I think the case is similar when we configure telnet, where we can deny the access by editing the file /etc/xinetd.d/telnet. Open the file in any editor...
kvbiju22
Offline Send Email 		Jun 30, 2008
10:42 am

... server ... to ... question. ... telnet.It ... The straight forward method is using tcp-wrappers i.e. /etc/hots.deny files, as devilisback said. we can also...
anujsingh_1
Offline 		Jul 1, 2008
6:53 pm

Hi Our group has become active it seems.. Anuj has given a very good view on configuring the services. Keep going. Thanks ... From: anujsingh_1...
K V Biju
kvbiju22
Offline Send Email 		Jul 4, 2008
7:39 am

Anuj one of the few person whom i pay respect in the field of linux. I have never seens a person like anuj he posses good knowledge and problem soling skills ...
monsterisback
Offline Send Email 		Jul 5, 2008
5:35 am
< Prev Topic  |  Next Topic >
Message #
Search:
Advanced
Copyright © 2009 Yahoo! Inc. All rights reserved.
Privacy Policy - Terms of Service - Guidelines - Help