Discussion on the solution of krb5-telnet Problems

Telnet remote services are required by many enterprises. Many administrators are also very concerned about this learning. So how do I Telnet for various Linux versions? So today we will explain the problem of krb5-telnet of this system. We will solve the problem in two aspects:

1. Disabling selinux setenforce 0) has little impact

2. Disable the firewall iptables-F or service iptables stop)

Red Hat Enterprise Linux 5 telnet enabling process

1. Check whether your telnet service is enabled:

 
 

  
  
[Root @ 111 ~] # Chkconfig -- list | grep telnet
  
  
Ekrb5-telnet: off
  
  
Krb5-telnet: off
  
  
[Root @ 111 ~] #
  
  
Note that the check result is disabled.
 
 

2. Open the telnet service:

 
 

  
  
[Root @ 111 ~] # Chkconfig krb5-telnet on
  
  
[Root @ 111 ~] # Chkconfig -- list | grep telnet
  
  
Ekrb5-telnet: off
  
  
Krb5-telnet: on
  
  
Check that it has been enabled
 
 

3. Modify the login file securetty to add the terminal points to be logged on.

 
 

  
  
[Root @ 111 ~] # Vi/etc/securetty
  
  
Add the following lines:
  
  
Pts/1
  
  
Pts/2
  
  
Pts/3
  
  
Pts/4
  
  
Pts/5
  
  
......
 
 

You can also use this method: mv/etc/securetty. bak to remove files) Save and exit. At this time, you can only Log On As A non-root user. If you want to log on as a root user, the following describes. note: If the chkconfig ekrb5-telnet on. will prompt Unencrypted connection refused. goodbye. connection closed by foreign host.

The error message indicates that the encrypted connection is denied. After checking the configuration file, no encryption options are found, and the configuration file is correct, so I searched for a large circle on google and finally found a solution written by a foreigner:

I really needed a bit of guidance and you provide it. /sbin/chkconfig -- list | grep telnetThe above command told me I had both krb5-telnet and ekrb5-telnet, andalso the installed telnet all on. initially I did not know what theywere all. after turning them on and off and testing my telnetconnection from another box I realized that "ekrb5-telnet" was theencrypted telnet server that I needed to turn off to run "krb-telnet" which allowed non- encrypted telnet connections. example/sbin/chkconfig ekrb5-telnet offThanks for your help.

The original ekrb5-telnet is a need to encrypt the telnet service, must have Kerberos server, the Service to start on of course need to encrypt. solution: Set/etc/xinetd. d/disable in the ekrb5-telnet to = yes, and then restart the xinetd service xinetd restart is OK! Equivalent to turn off the ekrb5-telnet, pay attention to the service is a red hat series of commands, non-standard commands, the corresponding operation can be achieved as follows:/etc/init. d/xinetd restart. "/etc/xinetd. d/ekrb5-telnet "/etc/xinetd. d. the startup location of the daemon.

Content Self-output: http://blog.163.com/mail_zcw/blog/static/412607742008413114453290/