iX 6.5)

Chapter 2 33

Internet Daemon

inetd Security File

Updating inetd Security File

Each line in the inetd security ﬁle contains a service name, a

permission ﬁeld, and the IP addresses or domain names of the hosts

and networks allowed to use that service on your host system. You can

open the ﬁle to view the current security restraints or to change them.

To do so:

1. Open the security ﬁle with an MPE text editor. The contents will

resemble the following:

# The lines in the file contain a service name, permission field and

# the Internet addresses or names of the hosts and/or networks

# allowed to use that service in the local machine.

# The form for each entry in this file is:

# <service name> <allow/deny> <host/network addresses, host/network names>

# For example:

# telnet allow 10.3-5 192.34.56.5 ahost anetwork

# The above entry allows the following hosts to attempt to access your

system

# using telnet:

# hosts in subnets 3 through 5 in network 10,

# the host with Internet Address of 192.34.56.5,

# the host by the name of "ahost",

# all the hosts in the network "anetwork"

# tftp deny 192.23.4.3

# The tftp entry denies host 192.23.4.3 to access your system using tftp

# Hosts and network names must be official names, not aliases.

# See the Configuring and Installing Internet Services Manual for more

# information.

The word allow or deny in the second column determines whether

the list of remote hosts in the next ﬁeld to the right has access to the

speciﬁed service. If there is more than one line for a service,

regardless of whether a statement indicates allow or deny, the

inetd server ignores all but the last line.

2. Make any necessary editing changes. Refer to the following three

sections, “Editing Tips”, “Using Wildcard Characters” and “Using

Range Character” for more information.

3. Save your ﬁle and exit the editor.