How do I disable FTP and/or Telnet on an NAC appliance?
Product and Software: This article applies to all ECS product and software versions.Requirements
SSH software (for example: PuTTY)
Familiarity with vi editor
Procedure
1) SSH into the NAC appliance.
2) Back up the 'inetd.conf' file:
cp /etc/inetd.conf /etc/inetd.conf.bak
3) Edit the 'inetd.conf' file:
vi /etc/inetd.conf
4) Comment out the following lines by typing a # in front of them.
For FTP: ftp stream tcp nowait root /usr/sbin/tcpd in.ftpd For Telnet: telnet stream tcp nowait root /usr/sbin/tcpd in.telnetd
For FTP:
ftp stream tcp nowait root /usr/sbin/tcpd in.ftpd
For Telnet:
telnet stream tcp nowait root /usr/sbin/tcpd in.telnetd
5) Save the file
:wq
6) Restart 'inetd' by issuing an HUP (hang up) kill:
kill -HUP inetd orkill -HUP <inetd process id> (such as, kill -HUP 1754)
7) Test to ensure you cannot Telnet/FTP into the NAC appliance.
© Copyright 2024 Hewlett Packard Enterprise Development LPAll Rights Reserved.