Re: ftp/telnet fails since upgrade
On Wed, 16 Jun 1999, Hugo van der Merwe wrote: having ALL: ALL in hosts.deny and ALL: 192.168.1.* in hosts.allow worked perfectly. hosts.allow was supposed to override hosts.deny. When did this change? You want ALL: 192.168.1. without the star at the end. The behaviour you mention is AFAIK still the correct one. hth. -- William Ono [EMAIL PROTECTED] PGP key: 0x93BA6AFD fingerprint = E3 64 C5 43 3E B3 2D A6 C6 D7 E3 45 90 24 78 DE = fingerprint PGP-encrypted mail welcome! 640k ought to be enough for everybody.
Re: ftp/telnet fails since upgrade
On Thu, 17 Jun 1999, William Ono wrote: On Wed, 16 Jun 1999, Hugo van der Merwe wrote: having ALL: ALL in hosts.deny and ALL: 192.168.1.* in hosts.allow worked perfectly. hosts.allow was supposed to override hosts.deny. When did this change? You want ALL: 192.168.1. without the star at the end. The behaviour you mention is AFAIK still the correct one. Ah, yes. I have now restored my hosts.deny to its former meanness, and removed the star at the end of 192.168.1., as well as add 127.0.0. without which telnet localhost didn't work. hth. It did, thanks. Hugo van der Merwe
Re: ftp/telnet fails since upgrade
For the ftp problem, take a look at /etc/inetd.conf and see if the ftp line has been commented out. If so, remove the octothorpe (#). There might be more than one of these lines; you should only enable one. These two lines are uncommented in inetd.conf: ftp stream tcp nowait root/usr/sbin/tcpd \ /usr/sbin/in.ftpd telnet stream tcp nowait root/usr/sbin/tcpd \ /usr/sbin/in.telnetd (They are both on one line. The \ is just to wrap the mail message.) Maybe I should try upgrading to 2.2.9? Upgrading to 2.0.36 from 2.0.34 solved my sound problems back in my 2.0 days. Hugo van der Merwe
Re: ftp/telnet fails since upgrade
longer ftp or telnet to my machine. (421 Service not available, remote server has closed connection, and Connection closed by foreign host). In /etc/hosts.deny try commenting out the line ALL: PARANOID Thanks. That didn't help with the ftp/telnet problem, but I think it solved another problem that crept up today. Hugo van der Merwe
Re: ftp/telnet fails since upgrade
On Wed, Jun 16, 1999 at 12:03:15PM +0200, Hugo van der Merwe wrote: longer ftp or telnet to my machine. (421 Service not available, remote server has closed connection, and Connection closed by foreign host). Have you noticed, that some net services have now their own debs in the net section? They used to be in netbase under hamm, but are no more. K.-W. Schulte -- Dr. Karl-Wilhelm Schulte Bergische Universitaet-GH/HRZ (Computing Center) Gaussstr. 20 D-42097 Wuppertal (Germany) Tel. +49-202-4392807, Fax +49-202-4392910 [EMAIL PROTECTED]
Re: ftp/telnet fails since upgrade
Your subject line sounds a lot like something that just happened for me: Note: *this is not a complaint or cry for help -- just potentially useful information* After upgrading to potato, I tried some of the various telnet offerings: regular, SSL, and '98. (The latter two sound suspiciously similar.) Anyway, somewhere along the line one deleted my /usr/bin/telnet file. Now, regardless of which is installed, I only get a /usr/bin/telnet.nossl file. That means that there's *no telnet* command available, but you can use telnet.nossl if you want. (I also thought that was an interesting choice of filename when the SSL version is installed.) Well, I currently have the SSL flavor installed and a symlink in /usr/local/bin/telnet to /usr/bin/telnet.nossl. Using that, it seems that there *is* ssl, contrary to this name ^. Another variation between them all is the name of the telnet daemon. Some install /usr/sbin/in.telnetd.nossl (currently installed - telnetd-SSL), some leave off the in. prefix, and some leave off the .nossl suffix, I think. This wouldn't be such a big deal, except none of them updates the entry in /etc/inetd.conf. That must be done by hand, and a -HUP sent to the inetd process to make it use the new telnetd. Otherwise, you get Connection closed by foreign host when inetd can't find the telnetd file. I thought all this was especially interesting since I have another potato machine that hasn't had any of these problems. Maybe it's just not completely updated, or maybe I did something wrong this time. Hope this helps someone, Jesse On 06/16/99 at 12:27:07, Dr. Karl-Wilhelm Schulte wrote concerning Re: ftp/telnet fails since upgrade: On Wed, Jun 16, 1999 at 12:03:15PM +0200, Hugo van der Merwe wrote: longer ftp or telnet to my machine. (421 Service not available, remote server has closed connection, and Connection closed by foreign host). Have you noticed, that some net services have now their own debs in the net section? They used to be in netbase under hamm, but are no more. -- Jesse Jacobsen, Pastor [EMAIL PROTECTED] Grace Lutheran Church (ELS) http://www.jvlnet.com/~jjacobsen/ Madison, Wisconsin GnuPG public key ID: 2E3EBF13 These words are my own, not necessarily those of my employer
Re: ftp/telnet fails since upgrade
On Tue, 15 Jun 1999, Bruce Chapman wrote: longer ftp or telnet to my machine. (421 Service not available, remote server has closed connection, and Connection closed by foreign host). In /etc/hosts.deny try commenting out the line ALL: PARANOID The problem was not ALL: PARANOID, it was ALL: ALL. (Which I placed there myself.) Funny, in my redhat days, and Debian 2.1 days as well, I believe, having ALL: ALL in hosts.deny and ALL: 192.168.1.* in hosts.allow worked perfectly. hosts.allow was supposed to override hosts.deny. When did this change? Thanks for everyone's help, do you think I should post a summary of suggestions for someone with a similar problem in the future? I'll do that this weekend, or Friday. I have also installed dhis, and it works perfectly, circumventing my ISP's firewalls as well... No more hiding behind them, I now have to worry about my own security. What do most people place in their hosts.allow and hosts.deny files? Hugo van der Merwe
Re: ftp/telnet fails since upgrade
On Tue, Jun 15, 1999 at 08:40:42PM +0200, Hugo van der Merwe wrote: I have, however, recently run into a problem. Since I upgraded, I can no longer ftp or telnet to my machine. (421 Service not available, remote server has closed connection, and Connection closed by foreign host). I'm not sure if this started happening when I installed potato, or when I installed kernel 2.2.7. I think it was the latter though. It happened when you upgraded to Potato. Potato seperates a lot of the services that used to be in one package into several packages...you want to install the telnetd package to be able to telnet to your box. you'll probably want to look at the packages under net carefully to find out what other services you're missing... - flip - [EMAIL PROTECTED]/[EMAIL PROTECTED] -- From moning till night, I stayed out of sight; didn't recognize I'd become no more than alive, I'd barely survived. In a word: overrun. -- Pink Floyd, Wearing the Inside Out
RE: ftp/telnet fails since upgrade
Hello, I've recently upgraded, and remembered reading that some of the networking packages were split up. I opened the packages.gz file (in dists/stable/main/binary-i386) and searched for telnetd. I found that telnetd is now its own package. I'm about to apt-get it. You probably need to do the same. Good luck, --David -Original Message- From: Hugo van der Merwe [mailto:[EMAIL PROTECTED] Sent: Tuesday, June 15, 1999 12:41 PM To: debian-user@lists.debian.org Subject: ftp/telnet fails since upgrade Hello! I have been using Debian for a while now (before that I used RH5.1). I really prefer Debian, its packaging system, and the fact that it works so nicely from a shell. (You don't need to load X before configuring stuff.) IPMasquerading and the like was a lot easier to set up. I have, however, recently run into a problem. Since I upgraded, I can no longer ftp or telnet to my machine. (421 Service not available, remote server has closed connection, and Connection closed by foreign host). I'm not sure if this started happening when I installed potato, or when I installed kernel 2.2.7. I think it was the latter though. My hosts.allow and .deny files stayed the same, and I can still telnet from this machine to others. (Not to itself.) Any ideas? TIA, Hugo van der Merwe
Re: ftp/telnet fails since upgrade
I have, however, recently run into a problem. Since I upgraded, I can no longer ftp or telnet to my machine. (421 Service not available, remote server has closed connection, and Connection closed by foreign host). I'm not sure if this started happening when I installed potato, or when I installed kernel 2.2.7. I think it was the latter though. It happened when you upgraded to Potato. Potato seperates a lot of the services that used to be in one package into several packages...you want to install the telnetd package to be able to telnet to your box. you'll probably want to look at the packages under net carefully to find out what other services you're missing... telnetd is installed (and there is a /usr/sbin/in.telnetd file on my system). I have installed nearly all packages under Standard. (As well as Req and Imp.) inetd is running. (Don't know if it is configured correctly though...) This is the output I get: # telnet localhost Trying 127.0.0.1... Connected to localhost Escape character is '^]'. Connection closed by foreign host. # Thanks for your replies, Hugo van der Merwe
Re: ftp/telnet fails since upgrade
On Tue, Jun 15, 1999 at 03:02:54PM -0400, Chris Flipse wrote: On Tue, Jun 15, 1999 at 08:40:42PM +0200, Hugo van der Merwe wrote: I have, however, recently run into a problem. Since I upgraded, I can no longer ftp or telnet to my machine. (421 Service not available, remote server has closed connection, and Connection closed by foreign host). I'm not sure if this started happening when I installed potato, or when I installed kernel 2.2.7. I think it was the latter though. It happened when you upgraded to Potato. Potato seperates a lot of the services that used to be in one package into several packages...you want to install the telnetd package to be able to telnet to your box. you'll probably want to look at the packages under net carefully to find out what other services you're missing... For the ftp problem, take a look at /etc/inetd.conf and see if the ftp line has been commented out. If so, remove the octothorpe (#). There might be more than one of these lines; you should only enable one. Bob -- Bob Nielsen Internet: [EMAIL PROTECTED] Tucson, AZ AMPRnet: [EMAIL PROTECTED] DM42nh http://www.primenet.com/~nielsen
