Manualshelf

HP-UX Internet Services Administrator's Guide (August 2003)

ManualsBrandsHP ManualsSoftwareHP-UX 11i v3 ONC and NFS Software
31323334353637383940
Installing and Configuring Internet Services
Configuring the Internet Services Software
Chapter 2 37
where
service_name
is the first field in an entry in the
/etc/inetd.conf file, and host_specifier is a host name, IP
address, IP address range, or the wildcard character (*).
3. Make sure the /var/adm/inetd.sec file is owned by user root and
group other, and make sure its permissions are set to 0444
(-r--r--r--).
Following are some example lines from an inetd.sec file:
login allow 10.*
shell deny vandal hun
tftp deny *
The first example allows access to rlogin from any IP address beginning
with 10. The second example denies access to remsh and rcp from hosts
vandal and hun. The third example denies everyone access to tftp.
Only the services configured in /etc/inetd.conf can be configured in
/var/adm/inetd.sec.
For more information, type man 4 inetd.sec or man 1M inetd at the
HP-UX prompt.
Configuring Logging
This section discusses the following topics:
“Configuring syslogd” on page 37
“Maintaining System Log Files” on page 38
“Configuring inetd Connection Logging” on page 39
“Configuring ftpd Session Logging” on page 39
Configuring syslogd
The Internet daemons and servers log informational and error messages
through syslog. You can monitor these messages by running syslogd
and determine the type and extent of monitoring through syslogd’s
configuration file, /etc/syslog.conf.
Each line in /etc/syslog.conf has a selector and an action. The
selector specifies which part of the system generated the message and
what priority the message has. The action specifies where the message
should be sent.