inetd.sec.4 (2010 09)
i
inetd.sec(4) inetd.sec(4)
ftp
Deny all access to the shell service; i.e.,
remsh:
shell deny
Allow access to the shell service by any host:
shell allow
or
shell
IPv6 Functionality
For an IPv6 service, an IPv6 address can be specified in the host address field of
inetd.sec. The host
address field can contain IPv6 addresses, IPv4 addresses, or both. This specification includes the IPv4
mapped IPv6 addresses also.
Host names for IPv6 services are the official names of the hosts returned by
getaddrinfo()
.
The wildcard characters (
*) and range characters (
-) are not supported for IPv6 addresses. The
equivalent for the wildcard character (
*
) is provided in the form of subnet_prefix
followed by a
forward-slash (
/) and prefix_length
. See the IPv6 Examples section for more details.
IPv6 Examples
To allow an IPv6 host with address
fe80::210:83ff:feb9:903f
and an IPv4 host with address
192.54.24.5 in order to use the telnet service, an entry in the inetd.sec file should be as follows:
telnet allow fe80::210:83ff:feb9:903f 192.54.24.5
The following entry denies ftp access to all hosts with a prefix fe80:
ftp deny fe80::/16
AUTHOR
inetd.sec was developed by HP.
NFS was developed by Sun Microsystems, Inc.
FILES
/var/adm/inetd.sec
SEE ALSO
inetd(1M), gethostent(3N), getaddrinfo(3N), getnetent(3N), hosts(4), inetd.conf(4), networks(4), proto-
cols(4), rpc(4), services(4).
2 Hewlett-Packard Company − 2 − HP-UX 11i Version 3: September 2010