Web Hosting Talk






PDA

View Full Version : Disabling Telnet question?

fuji
05-02-2001, 04:17 AM
Hi,

I'm fairly new to administrating a system. I got my first dedicated server and now I'm concerned about security.

Many people have talked about disabling services that you don't use. Telnet is among the services that I'm talking about.

I use SSH1 to connect to my server - so my question is, can I disable Telnet and still use SSH?

You'll have to forgive my ignorance... that is of course if this is a stupid question...

I would also like to know some of the security newsletters that are good... ones that I should read.

My host claims they will take care of my server... but I thought that it wouldn't hurt for me to take a more active role in the security of my server.

Thanks,

Richard
sodapopinski
05-02-2001, 05:08 AM
Sure you can do it.
Just close the telnet port and open the ssh port.
fruitsalad
05-02-2001, 08:15 AM
comment out the telnet reference in /etc/inetd.conf if you want to turn off telnet
XTStrike
05-02-2001, 09:44 AM
I always leave telnet open just incase, but i limit it to certain hosts masks in /etc/hosts.allow and /etc/hosts.deny

Im new to linux so this may not be the best way to do it, anobody know? id prefert if telnet was not totally disabled but limited to a single host or IP address.

Due to the instability with SSH sometimes, telnet is normally a last resort before you phone your ISP
fuji
05-02-2001, 03:15 PM
Great... commented out telnet and everything is working fine...

Thanks!

Richard
wbglinks
05-05-2001, 10:54 AM
This can easily be done. Simply turn off your telnet service, and enable the ssh service.

Though in all actuality, if you really don't need/want/use ssh, then keep this service disabled also.

Security can sometimes be easily understood, the less services, the less vulnerabilites...to a certain extent.
webfors
05-07-2001, 12:03 PM
Originally posted by xtstrike
I always leave telnet open just incase, but i limit it to certain hosts masks in /etc/hosts.allow and /etc/hosts.deny

Im new to linux so this may not be the best way to do it, anobody know? id prefert if telnet was not totally disabled but limited to a single host or IP address.

Due to the instability with SSH sometimes, telnet is normally a last resort before you phone your ISP

I've never had any problems with ssh (I use secureCRT). I've disabled telnet completely from our servers.
Pingu
05-07-2001, 03:50 PM
If you have a RAQ, turn Telnet off through the Control Panel.

Nothing wrong with editing files, but the RAQ will generate error messages if you turn off Telnet by hand and the status monitor thingy will be flashing red, untill you uncheck the Telnet server in your CP :)