HP-UX Reference (11i v2 03/08) - 1M System Administration Commands N-Z (vol 4)

ManualsBrandsHP ManualsSoftwareHP-UX Reference Manuals

341

342

343

344

345

346

347

348

349

350

telnetd(1M) telnetd(1M)

end system may telnet directly to any participating system without being

prompted for another login.

-y Set the behavior for stty 0

to instruct telnetd to close the connection on the

shell command

stty 0 or whenever the telnet

client communicates with tel-

netd to arrive upon 0 baud rate for

TELOPT_TERMSPEED.

-z This option allows users to set the

BUFFERTIMEOUT value. This option, when set,

informs

telnetd how long it should wait before timing out and ﬂushing the con-

catenated user data to TCP. Note that the

TIMEOUT value is measured in clock

ticks (10ms) and not in seconds. This option is set with integer values. There is no

speciﬁed default.

-TCP_DELAY This option allows the users to disable the

TCP_NODELAY socket option. When

telnetd is invoked with this option, small writes over

telnetd may concatenate

at the tcp level so that larger tcp packets are sent to the client at less frequent

intervals.

To conﬁgure

telnetd to have a

BUFFERSIZE of 100 bytes and a BUFFERTIMEOUT

of 100 ticks and the

TCP_DELAY ON, the entry in /etc/inetd.conf

would be:

telnet stream tcp nowait root /usr/lbin/telnetd telnetd -s100 \

-z100 -TCP_DELAY

To work in the IPv6 environment, the entry in /etc/inetd.conf

would be:

telnet stream tcp6 nowait root /usr/lbin/telnetd telnetd -s100 \

-z100 -TCP_DELAY

Note: tcp has changed to tcp6 for IPv6.

Kerberos-speciﬁc Options

In Kerberos mode,

inetd can start telnetd with the following lines in /etc/inetd.conf

telnet stream tcp nowait root /usr/lbin/telnetd telnetd -A

telnet stream tcp nowait root /usr/lbin/telnetd telnetd -a valid

The -A option is used to ensure that non-secure systems are denied access to the server. It overrides any

value speciﬁed with the -a option except when authmode is debug. See the sis(5) manpage.

The

-a authmode option speciﬁes what mode is to be used for Kerberos authentication. See the sis(5)

manpage. Values for authmode are:

debug Activates authentication debugging.

valid Default value. Only allows connections when the remote user can provide valid Kerberos

authentication information and is authorized to access the speciﬁed account.

none Authentication information is not required. If no or insufﬁcient Kerberos authentication

information is provided, the login program provides the necessary user veriﬁcation.

See the login(1) manpage.

The

-f option instructs telnetd to use the normal authentication mode whenever the telnet client

communicates NULL type in the authentication option negotiation.

By default, the

telnet server provides remote execution facilities with authentication based on Ker-

beros V5. See the sis(5) manpage.

DIAGNOSTICS

If any error is encountered by

telnetd in establishing the connection, an error message is returned

through the connection, after which the connection is closed and the server exits. Any errors generated

by the login process or its descendents are passed through as ordinary data.

The following diagnostic messages are displayed by

telnetd:

unable to allocate Telnet device

The server was unable to obtain a Telnet pseudo-terminal for use with the login process.

Either all Telnet pseudo-terminals were in use or the telm driver has not been properly set up

(see tels(7)).

HP-UX 11i Version 2: August 2003 − 3 − Hewlett-Packard Company Section 1M−−807