Rh9 question
Results 1 to 6 of 6

Thread: Rh9 question

  1. #1
    Member
    Join Date
    Feb 2003
    Posts
    33

    Question Rh9 question

    I have a quick question. In my ccna class we just got a server setup for our lab. the server is running RH9 and I was wondering is there a way to block certin commands when you telnet into the server. any help would be greatly appreciated. BTW the instructor does not know herself on how to do this.

    if this is in a tut I'm sorry but I missed it
    Life\'s a Dream, Wake Up!!!!!!!!!! -Zelfaldor

  2. #2
    Just a Virtualized Geek MrLinus's Avatar
    Join Date
    Sep 2001
    Location
    Redondo Beach, CA
    Posts
    7,324
    Block certain commands on RH or CISCO? Remove the permissions would be the best option.

    Research chmod and/or chown.
    Goodbye, Mittens (1992-2008). My pillow will be cold without your purring beside my head
    Extra! Extra! Get your FREE copy of Insight Newsletter||MsMittens' HomePage

  3. #3
    Member
    Join Date
    Feb 2003
    Posts
    33
    I would like to block the commands in RH
    Life\'s a Dream, Wake Up!!!!!!!!!! -Zelfaldor

  4. #4
    rebmeM roineS enilnOitnA steve.milner's Avatar
    Join Date
    Jul 2003
    Posts
    1,018
    Firstly I would use SSH rather than telnet, since it's much more secure:

    http://www.antionline.com/showthread...&highlight=SSH

    (Sorry, I have no shame!)

    To secure the commands you could change the permissions so that only root could execute them.

    What commands were you thinking about?
    IT, e-commerce, Retail, Programme & Project Management, EPoS, Supply Chain and Logistic Services. Yorkshire. http://www.bigi.uk.com

  5. #5
    Member
    Join Date
    Feb 2003
    Posts
    33
    really the only command that needs to be blocked is the 'su' command we dont need ppl telnetting in and shutting down the server when others are trying to work on it
    Life\'s a Dream, Wake Up!!!!!!!!!! -Zelfaldor

  6. #6
    rebmeM roineS enilnOitnA steve.milner's Avatar
    Join Date
    Jul 2003
    Posts
    1,018
    You can do this globally so that only designated users can su

    Okay - first create a group (start - system settings - users&groups) and call it something like CanSU and add any users that
    are allowed to use the su command to that group.

    These users will be allowed to su from telnet, but no one else will.


    To finish type the following as root:

    cd /bin
    chgrp CanSU su
    chmod o-x su


    HTH
    IT, e-commerce, Retail, Programme & Project Management, EPoS, Supply Chain and Logistic Services. Yorkshire. http://www.bigi.uk.com

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •