Skip site navigation (1)Skip section navigation (2) 
Date:      Fri, 18 Jun 1999 13:45:49 -0700 (PDT)
From:      Doug White <dwhite@resnet.uoregon.edu>
To:        Ken McGlothlen <mcglk@serv.net>
Cc:        questions@FreeBSD.ORG
Subject:   Re: Trying to use telnetd.
Message-ID:  <Pine.BSF.4.10.9906181342220.70758-100000@resnet.uoregon.edu>
In-Reply-To: <14181.34146.537092.357907@ralf.serv.net>
next in thread | previous in thread | raw e-mail | index | archive | help 
On Mon, 14 Jun 1999, Ken McGlothlen wrote:

> I have a friend who, for various reasons, wishes to telnet to a
> BSD-compliant Unix box (my newly updated FreeBSD 3.2-RELEASE system).  
> I have a DSL line, and he's a very low bandwidth user, so I'm all for
> this.

That's your decision then :-)

> His main problem is that the firewall where he works doesn't permit
> access to port 23 (the normal telnet port), but does permit traffic to
> port 8080.  Under 2.2.1-RELEASE, though (yes, it had been a long time
> since my last upgrade), all he had to do was call me up, I'd su to
> root and run
> 
> 	/usr/libexec/telnetd -debug 8080
> 
> and then he'd telnet to my machine, port 8080, and be on.  Even better, it
> turned out that only one login was permitted at the port, so it was a fairly
> nice on-demand moderately secure way of getting him in.
> 
> Unfortunately, this no longer seems to work.  What happens is that when I set
> up the telnetd, this happens at the login:
> 
> 	$ telnet localhost 8080
> 
> 	FreeBSD/i386 (unka.dunka.doo) (ttypi)
> 
> 	login: -h option: Operation not permitted
        ^^^^^^

Note that login is a actual program; see login(1).

I'm guessing that root-ness is getting eaten by telnetd.  Or something.

Why not just drop this into inetd.conf?

> On the off-chance that this was being caused by /etc/login.access, I renamed
> the login.access file (which I wasn't using yet), to no avail.
> 
> So how *do* I permit a telnet login to occur at port 8080?

I'm guessing login is checking the uid and not the euid of the process.
It notices that the uid is yours (as a user) and pukes.  It might work if
you log in as root (not su) and then run it.

Doug White                               
Internet:  dwhite@resnet.uoregon.edu    | FreeBSD: The Power to Serve
http://gladstone.uoregon.edu/~dwhite    | www.freebsd.org



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.10.9906181342220.70758-100000>