1、修改/etc/pam.d/login文件,将第二行注释掉。
suselinux:/etc/pam.d # more login
#%PAM-1.0
auth requisite pam_unix2.so nullok #set_secrpc
#auth required pam_securetty.so
auth required pam_nologin.so
#auth required pam_homecheck.so
auth required pam_env.so
auth required pam_mail.so
account required pam_unix2.so
password required pam_pwcheck.so nullok
password required pam_unix2.so nullok use_first_pass use_authtok
session required pam_unix2.so none # debug or trace
session required pam_limits.so
2、修改/etc/xinetd.d/telnet配置文件 。
suselinux:/etc/xinetd.d # more telnet
# default: off
# description: Telnet is the old login server which is INSECURE and should \
# therefore not be used. Use secure shell (op
# If you need telnetd not to "keep-alives" (e.g. if it runs over a
# uplink), add "-n". See 'man telnetd' for more d
service telnet
{
disable = yes
socket_type = stream
protocol = tcp
wait = no
user = root
server = /usr/sbin/in.telnetd
}
suselinux:/etc/xinetd.d #
将蓝色部分的yes改为no即可。
3、重启xinetd守候进程。
suselinux:~ # /etc/init.d/xinetd restart
Shutting down xinetd: done
Starting INET services. (xinetd) done
suselinux:~ #
4、检查telnet服务当前状态。
suselinux:~ # chkconfig -l telnet
xinetd based services:
telnet: on
suselinux:~ #
5、结束。
阅读(5225) | 评论(0) | 转发(0) |
