subject:"RE\: understanding tftp"

RE: understanding tftp

2003-03-25 Thread christopher cuse

Hi John Paul,

Glad that it finally worked out -- but remember to isolate access to a
writable tftp server as it can lead to very ugly security issues.

I was a bit short on message concerning xinetd the other day -- I suppose
that is somewhat synonymous to kernel modules, that is, that kernel modules
are loaded and unloaded depending on whether they are needed.

xinetd's approach to services is similar -- services are launched
dynamically when they are requested. It is possible for your to configure
tftpd, pop and other services to be loaded continuously in memory, ready to
service eventual requests. from a resource standpoint, this may not be
desirable, particularly if the service is used irregularly. so larger
services (sendmail, apache, named, etc.) are loaded and forked into the
background ready handle requests, and xinetd stands ready to start and stop
"smaller" services that are used irregularly.

further, xinetd services are typically compiled using tcp wrappers -- an
additional method of securing services from unauthorized access. for
instance, if your tftp server is going to be used uniquely to backup/restore
cisco ios and router configs, than you can secure the service to allow only
access from your router(s). For good explanation, see the Chapter 8 in the
Red Hat 8.0 Reference Guide.

Cheers

Christopher CUSE
RHCE/CCNA

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of John-Paul Delaney
Sent: Tuesday, March 25, 2003 9:06 AM
To: [EMAIL PROTECTED]
Subject: RE: understanding tftp

Bravo Christopher that did it!

A big thanks...
/j-p.

"christopher cuse" <[EMAIL PROTECTED]>
Sent by: [EMAIL PROTECTED]
24/03/2003 15:29
Please respond to redhat-list

To: <[EMAIL PROTECTED]>
    cc:
    Subject:RE: understanding tftp

Hi John Paul

I see your error now -- you have placed a "-l" argument to the server:

-lRun the server in standalone (listen) mode, rather than run
from
inetd.   In  listen  mode,  the -t option is ignored, and
the -a
option can be used to specify a specific local address  or
port
to listen to.

remove the -l argument and  try again!

Cheers

Christopher CUSE
RHCE/CCNA
[EMAIL PROTECTED]

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of John-Paul Delaney
Sent: Monday, March 24, 2003 11:56 AM
To: [EMAIL PROTECTED]
Subject: Re: understanding tftp

Thanks Gene... I completely mis-interpreted that output :( .  This is the
contents of the /etc/xinetd.d/tftp file:

disable = no
socket_type = dgram
protocol= udp
wait= yes
user= root
server  = /usr/sbin/in.tftpd
server_args = -s -c -l /tftpboot
per_source  = 11
cps = 100 2

How then, is the tftp server started?

thanks
/j-p.

Gene Yoo <[EMAIL PROTECTED]>
Sent by: [EMAIL PROTECTED]
21/03/2003 23:24
Please respond to redhat-list

To: [EMAIL PROTECTED]
cc:
Subject:Re: understanding tftp

John-Paul Delaney wrote:
> tftpd seems to be running ok:
> root 20212  0.0  0.3  3544  632 tty1 S07:50   0:00 grep
tftpd

if you did ps auxw | grep tftpd like above, that's all your
going to see.  your tftpd is not up and running.

run chkconfig --list tftpd
--
<>

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

-BEGIN PGP SIGNATURE-
Version: GnuPG v1.2.0 (GNU/Linux)

iQCUAwUBPhxERRxoVYCzmrKXAQJK5gP3Y7CTsFyKpEz2p5W4GWI9+qSm+kWfdJ0R
xNlma0Ma9rAL/OBJcZMo5IXyXas+3Edogbv4Al6dIf8lot1WS0Iaxxl/cg2f7gf+
otf7LfNpZDE/6OzR7A1qN6baPMLSjGzywwQWMfSVuWWb6kGQxMsA13Kn68G7Ozxs
5CODZqUPyg==
=AolA
-END PGP SIGNATURE-

--
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list

--
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list

--
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list

--
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list

-- 
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list

RE: understanding tftp

2003-03-25 Thread John-Paul Delaney

Bravo Christopher that did it!

A big thanks...
/j-p.





"christopher cuse" <[EMAIL PROTECTED]>
Sent by: [EMAIL PROTECTED]
24/03/2003 15:29
Please respond to redhat-list
 
To: <[EMAIL PROTECTED]>
cc: 
        Subject:    RE: understanding tftp


Hi John Paul

I see your error now -- you have placed a "-l" argument to the server:

-lRun the server in standalone (listen) mode, rather than run
from
inetd.   In  listen  mode,  the -t option is ignored, and
the -a
option can be used to specify a specific local address  or
port
to listen to.

remove the -l argument and  try again!

Cheers

Christopher CUSE
RHCE/CCNA
[EMAIL PROTECTED]

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of John-Paul Delaney
Sent: Monday, March 24, 2003 11:56 AM
To: [EMAIL PROTECTED]
Subject: Re: understanding tftp


Thanks Gene... I completely mis-interpreted that output :( .  This is the
contents of the /etc/xinetd.d/tftp file:


disable = no
socket_type = dgram
protocol= udp
wait= yes
user= root
server  = /usr/sbin/in.tftpd
server_args = -s -c -l /tftpboot
per_source  = 11
cps = 100 2


How then, is the tftp server started?

thanks
/j-p.







Gene Yoo <[EMAIL PROTECTED]>
Sent by: [EMAIL PROTECTED]
21/03/2003 23:24
Please respond to redhat-list

To: [EMAIL PROTECTED]
cc:
Subject:Re: understanding tftp


John-Paul Delaney wrote:
> tftpd seems to be running ok:
> root 20212  0.0  0.3  3544  632 tty1 S07:50   0:00 grep
tftpd

if you did ps auxw | grep tftpd like above, that's all your
going to see.  your tftpd is not up and running.

run chkconfig --list tftpd
--
<>

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1


-BEGIN PGP SIGNATURE-
Version: GnuPG v1.2.0 (GNU/Linux)

iQCUAwUBPhxERRxoVYCzmrKXAQJK5gP3Y7CTsFyKpEz2p5W4GWI9+qSm+kWfdJ0R
xNlma0Ma9rAL/OBJcZMo5IXyXas+3Edogbv4Al6dIf8lot1WS0Iaxxl/cg2f7gf+
otf7LfNpZDE/6OzR7A1qN6baPMLSjGzywwQWMfSVuWWb6kGQxMsA13Kn68G7Ozxs
5CODZqUPyg==
=AolA
-END PGP SIGNATURE-



--
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list



--
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list



--
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list



-- 
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list

RE: understanding tftp

2003-03-24 Thread christopher cuse

Hi John Paul

I see your error now -- you have placed a "-l" argument to the server:

-lRun the server in standalone (listen) mode, rather than run
from
  inetd.   In  listen  mode,  the -t option is ignored, and
the -a
  option can be used to specify a specific local address  or
port
  to listen to.

remove the -l argument and  try again!

Cheers

Christopher CUSE
RHCE/CCNA
[EMAIL PROTECTED]

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of John-Paul Delaney
Sent: Monday, March 24, 2003 11:56 AM
To: [EMAIL PROTECTED]
Subject: Re: understanding tftp


Thanks Gene... I completely mis-interpreted that output :( .  This is the
contents of the /etc/xinetd.d/tftp file:


disable = no
socket_type = dgram
protocol= udp
wait= yes
user= root
server  = /usr/sbin/in.tftpd
server_args = -s -c -l /tftpboot
per_source  = 11
cps = 100 2


How then, is the tftp server started?

thanks
/j-p.







Gene Yoo <[EMAIL PROTECTED]>
Sent by: [EMAIL PROTECTED]
21/03/2003 23:24
Please respond to redhat-list

To: [EMAIL PROTECTED]
cc:
Subject:Re: understanding tftp


John-Paul Delaney wrote:
> tftpd seems to be running ok:
> root 20212  0.0  0.3  3544  632 tty1 S07:50   0:00 grep
tftpd

if you did ps auxw | grep tftpd like above, that's all your
going to see.  your tftpd is not up and running.

run chkconfig --list tftpd
--
<>

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1


-BEGIN PGP SIGNATURE-
Version: GnuPG v1.2.0 (GNU/Linux)

iQCUAwUBPhxERRxoVYCzmrKXAQJK5gP3Y7CTsFyKpEz2p5W4GWI9+qSm+kWfdJ0R
xNlma0Ma9rAL/OBJcZMo5IXyXas+3Edogbv4Al6dIf8lot1WS0Iaxxl/cg2f7gf+
otf7LfNpZDE/6OzR7A1qN6baPMLSjGzywwQWMfSVuWWb6kGQxMsA13Kn68G7Ozxs
5CODZqUPyg==
=AolA
-END PGP SIGNATURE-



--
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list



--
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list



-- 
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list

RE: understanding tftp

2003-03-24 Thread christopher cuse

hi John-Paul,

xinetd service are a bit special -- what essentially happens is that xinet
listens on the port concerned, and when an incoming request happens, it
starts the service as specified in the file (like the one below). typical
services that use the xinetd are telnet, ftp, popx, imap, etc.. daemons such
as httpd or smtp, typically are started individually and forked into the
background and remain there whether or not there is activity.

could you change "disable = yes" in your tftp file in /etc/xinetd, do a
"service restart xinted", and try to tftp? I have a hunch that there are
maybe two services competing for port 69.

cheers

Christropher CUSE
RHCE/CCNA

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of John-Paul Delaney
Sent: Monday, March 24, 2003 11:56 AM
To: [EMAIL PROTECTED]
Subject: Re: understanding tftp

Thanks Gene... I completely mis-interpreted that output :( .  This is the
contents of the /etc/xinetd.d/tftp file:

disable = no
socket_type = dgram
protocol= udp
wait= yes
user= root
server  = /usr/sbin/in.tftpd
server_args = -s -c -l /tftpboot
per_source  = 11
cps = 100 2

How then, is the tftp server started?

thanks
/j-p.

Gene Yoo <[EMAIL PROTECTED]>
Sent by: [EMAIL PROTECTED]
21/03/2003 23:24
Please respond to redhat-list

To: [EMAIL PROTECTED]
cc:
    Subject:Re: understanding tftp

John-Paul Delaney wrote:
> tftpd seems to be running ok:
> root 20212  0.0  0.3  3544  632 tty1 S07:50   0:00 grep
tftpd

if you did ps auxw | grep tftpd like above, that's all your
going to see.  your tftpd is not up and running.

run chkconfig --list tftpd
--
<>

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

-BEGIN PGP SIGNATURE-
Version: GnuPG v1.2.0 (GNU/Linux)

iQCUAwUBPhxERRxoVYCzmrKXAQJK5gP3Y7CTsFyKpEz2p5W4GWI9+qSm+kWfdJ0R
xNlma0Ma9rAL/OBJcZMo5IXyXas+3Edogbv4Al6dIf8lot1WS0Iaxxl/cg2f7gf+
otf7LfNpZDE/6OzR7A1qN6baPMLSjGzywwQWMfSVuWWb6kGQxMsA13Kn68G7Ozxs
5CODZqUPyg==
=AolA
-END PGP SIGNATURE-

--
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list

--
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list

-- 
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list

Re: understanding tftp

2003-03-24 Thread John-Paul Delaney

Thanks Gene... I completely mis-interpreted that output :( .  This is the 
contents of the /etc/xinetd.d/tftp file:


disable = no
socket_type = dgram
protocol= udp
wait= yes
user= root
server  = /usr/sbin/in.tftpd
server_args = -s -c -l /tftpboot
per_source  = 11
cps = 100 2


How then, is the tftp server started?

thanks
/j-p.







Gene Yoo <[EMAIL PROTECTED]>
Sent by: [EMAIL PROTECTED]
21/03/2003 23:24
Please respond to redhat-list
 
To: [EMAIL PROTECTED]
cc: 
Subject:        Re: understanding tftp


John-Paul Delaney wrote:
> tftpd seems to be running ok:
> root 20212  0.0  0.3  3544  632 tty1 S07:50   0:00 grep 
tftpd

if you did ps auxw | grep tftpd like above, that's all your
going to see.  your tftpd is not up and running.

run chkconfig --list tftpd
--
<>

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1


-BEGIN PGP SIGNATURE-
Version: GnuPG v1.2.0 (GNU/Linux)

iQCUAwUBPhxERRxoVYCzmrKXAQJK5gP3Y7CTsFyKpEz2p5W4GWI9+qSm+kWfdJ0R
xNlma0Ma9rAL/OBJcZMo5IXyXas+3Edogbv4Al6dIf8lot1WS0Iaxxl/cg2f7gf+
otf7LfNpZDE/6OzR7A1qN6baPMLSjGzywwQWMfSVuWWb6kGQxMsA13Kn68G7Ozxs
5CODZqUPyg==
=AolA
-END PGP SIGNATURE-



--
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list



-- 
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list

Re: understanding tftp

2003-03-21 Thread nate

Gene Yoo said:
> John-Paul Delaney wrote:
>> tftpd seems to be running ok:
>> root 20212  0.0  0.3  3544  632 tty1 S07:50   0:00 grep
>> tftpd
>
> if you did ps auxw | grep tftpd like above, that's all your
> going to see.  your tftpd is not up and running.

tftpd is typically called from [x]inetd, not as a stand-alone daemon.

nate





-- 
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list

Re: understanding tftp

2003-03-21 Thread Gene Yoo

John-Paul Delaney wrote:
tftpd seems to be running ok:
root 20212  0.0  0.3  3544  632 tty1 S07:50   0:00 grep tftpd
if you did ps auxw | grep tftpd like above, that's all your 
going to see.  your tftpd is not up and running.

run chkconfig --list tftpd
--
<>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.2.0 (GNU/Linux)
iQCUAwUBPhxERRxoVYCzmrKXAQJK5gP3Y7CTsFyKpEz2p5W4GWI9+qSm+kWfdJ0R
xNlma0Ma9rAL/OBJcZMo5IXyXas+3Edogbv4Al6dIf8lot1WS0Iaxxl/cg2f7gf+
otf7LfNpZDE/6OzR7A1qN6baPMLSjGzywwQWMfSVuWWb6kGQxMsA13Kn68G7Ozxs
5CODZqUPyg==
=AolA
-END PGP SIGNATURE-


--
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list

Re: understanding tftp

2003-03-20 Thread John-Paul Delaney

Output of iptables -L:

Chain INPUT (policy ACCEPT)
target prot opt source   destination

Chain FORWARD (policy ACCEPT)
target prot opt source   destination

Chain OUTPUT (policy ACCEPT)
target prot opt source   destination


tftpd seems to be running ok:
root 20212  0.0  0.3  3544  632 tty1 S07:50   0:00 grep tftpd


Logwatch email msg content:
 Connections (secure-log) Begin ---

Connections:
Service ftp:
10.11.35.16: 1 Time(s)
10.11.35.8: 3 Time(s)
Service tftp:
10.11.41.254: 8092 Time(s)
10.11.35.8: 24234 Time(s)
Service telnet:
10.11.35.8: 1 Time(s)

**Unmatched Entries**
xinetd[1604]: FAIL: tftp connections per second from=10.11.35.8
xinetd[1604]: FAIL: tftp connections per second from=10.11.35.8
xinetd[1604]: FAIL: tftp connections per second from=10.11.35.8
xinetd[1604]: FAIL: tftp connections per second from=10.11.35.8
xinetd[21348]: FAIL: tftp connections per second from=10.11.41.254
xinetd[21348]: FAIL: tftp connections per second from=10.11.41.254


41.254 is the router I was trying to tftp from and 35.8 is my workstation 
where I was testing.

thanks
/j-p.






John-Paul Delaney wrote:
>
> Hello List...
>
> I'm having problems setting up a tftp server on my rh8.0 box.  I want to
> use it to backup cisco router configurations.
>
> I've created a file called startup-config in the tftpboot directory with
> chmod 777 and chown nobody:nobody.  The directory tftpboot is also 777,
> nobody:nobody.
>
>  From the router I try a "copy startup-config tftp", and input the ip
> address at the next prompt.  I then get the error:
> %Error opening tftp://10.11.35.28/startup-config (Undefined error)
>
> In /var/log/messages I find a long list of errors:
> ..." in.tftpd[31383]: cannot bind to local socket:  Address already
> in use"
>
>
> The output of netstat -a | grep tftp is:
> udp   0  0   *:tftp
> *:*
>
>
> Thanks - Any help on this would be greatly appreciated.
> /j-p.

what is your firewall rule?  also is tftp running (ps auxw |
grep tftpd)
--
<>









-- 
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list

Re: understanding tftp

2003-03-20 Thread Gene Yoo

John-Paul Delaney wrote:
Hello List...

I'm having problems setting up a tftp server on my rh8.0 box.  I want to 
use it to backup cisco router configurations.

I've created a file called startup-config in the tftpboot directory with 
chmod 777 and chown nobody:nobody.  The directory tftpboot is also 777, 
nobody:nobody.

 From the router I try a "copy startup-config tftp", and input the ip 
address at the next prompt.  I then get the error:
%Error opening tftp://10.11.35.28/startup-config (Undefined error)

In /var/log/messages I find a long list of errors:
..." in.tftpd[31383]: cannot bind to local socket:  Address already 
in use"

The output of netstat -a | grep tftp is:
udp   0  0   *:tftp 
*:*

Thanks - Any help on this would be greatly appreciated.
/j-p.
what is your firewall rule?  also is tftp running (ps auxw | 
grep tftpd)
--
<>

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.2.0 (GNU/Linux)
iQCUAwUBPhxERRxoVYCzmrKXAQJK5gP3Y7CTsFyKpEz2p5W4GWI9+qSm+kWfdJ0R
xNlma0Ma9rAL/OBJcZMo5IXyXas+3Edogbv4Al6dIf8lot1WS0Iaxxl/cg2f7gf+
otf7LfNpZDE/6OzR7A1qN6baPMLSjGzywwQWMfSVuWWb6kGQxMsA13Kn68G7Ozxs
5CODZqUPyg==
=AolA
-END PGP SIGNATURE-


--
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list

RE: understanding tftp

2003-03-20 Thread John-Paul Delaney

Thanks Christopher... I've added the create parameter  as you suggest, 
however the problem persists.

In /var/log/messages I continue to get a "in.tftpd [5-digit no., 
incrementing by 1 each line] cannot bind to local socket: Address already 
in use".

I've stopped iptables (presuming that means all incoming packets are 
accepted).  Following Nate's suggestion, I've stopped xinetd and then 
netstat doesn't show any listening on tftp/69 udp.  I can telnet and ftp 
to the server without problems.

Anyone with suggestions on how to troubleshoot/interpret the address 
already in use message?  I'm at a loss at this stage.

Thanks again.
/j-p.






"christopher cuse" <[EMAIL PROTECTED]>
Sent by: [EMAIL PROTECTED]
19/03/2003 14:39
Please respond to redhat-list
 
To: <[EMAIL PROTECTED]>
cc: 
Subject:RE: understanding tftp


Hi John-Paul,

Well it sure looks like from the syslog that something else is on your 
tftp
port, so please verify.  -- or -- tftpd hasn't been configured to allow 
the
creation of files in your tftphome directory.

Here's my /etc/xinetd.d/tftp file:

# default: off
# description: The tftp server serves files using the trivial file 
transfer
\
#   protocol.  The tftp protocol is often used to boot diskless \
#   workstations, download configuration files to network-aware 
printers, \
#   and to start the installation process for some operating systems.
service tftp
{
disable = no
socket_type = dgram
protocol= udp
wait= yes
user= root
server  = /usr/sbin/in.tftpd
server_args = -s -c /tftpboot
per_source  = 11
cps = 100 2
}


The -c in sever_args tells tftp to allow creation of files. security risk 
--
you have been warned, so make sure your tftp port is blocked only to those
who should have access!

Cheers,

Christopher CUSE
RHCE/CCNA
[EMAIL PROTECTED]

--nothing is too difficult once you completely understand it.



Message: 2
To: [EMAIL PROTECTED]
Subject: understanding tftp
From: "John-Paul Delaney" <[EMAIL PROTECTED]>
Date: Wed, 19 Mar 2003 10:56:15 +0100
Reply-To: [EMAIL PROTECTED]

This is a multipart message in MIME format.
--=_alternative 00368DA1C1256CEE_=
Content-Type: text/plain; charset="US-ASCII"

Hello List...

I'm having problems setting up a tftp server on my rh8.0 box.  I want to
use it to backup cisco router configurations.

I've created a file called startup-config in the tftpboot directory with
chmod 777 and chown nobody:nobody.  The directory tftpboot is also 777,
nobody:nobody.

>From the router I try a "copy startup-config tftp", and input the ip
address at the next prompt.  I then get the error:
%Error opening tftp://10.11.35.28/startup-config (Undefined error)

In /var/log/messages I find a long list of errors:
..." in.tftpd[31383]: cannot bind to local socket:  Address already in
use"


The output of netstat -a | grep tftp is:
udp   0  0   *:tftp  *:*


Thanks - Any help on this would be greatly appreciated.
/j-p.




--
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list



-- 
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list

Re: understanding tftp (apologies if received as html)

2003-03-19 Thread nate

John-Paul Delaney said:

> In /var/log/messages I find a long list of errors:
> ..." in.tftpd[31383]: cannot bind to local socket:  Address already in

try stopping inetd/xinetd whichever your using, run netstat and check
to be sure nothing is using the tftp port, perhaps theres a hung tftpd
process, or something else is spawning tftpd. don't restart inetd/xinetd
until nothing shows up using UDP/69 with netstat.

if you have other things in inetd/xinetd that needs to be up during this
time then just disable the tftpd service for the duration, and reload
xinetd so the service will be disabled.

nate





-- 
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list

RE: understanding tftp

2003-03-19 Thread christopher cuse

Hi John-Paul,

Well it sure looks like from the syslog that something else is on your tftp
port, so please verify.  -- or -- tftpd hasn't been configured to allow the
creation of files in your tftphome directory.

Here's my /etc/xinetd.d/tftp file:

# default: off
# description: The tftp server serves files using the trivial file transfer
\
#   protocol.  The tftp protocol is often used to boot diskless \
#   workstations, download configuration files to network-aware printers, \
#   and to start the installation process for some operating systems.
service tftp
{
disable = no
socket_type = dgram
protocol= udp
wait= yes
user= root
server  = /usr/sbin/in.tftpd
server_args = -s -c /tftpboot
per_source  = 11
cps = 100 2
}


The -c in sever_args tells tftp to allow creation of files. security risk --
you have been warned, so make sure your tftp port is blocked only to those
who should have access!

Cheers,

Christopher CUSE
RHCE/CCNA
[EMAIL PROTECTED]

--nothing is too difficult once you completely understand it.



 Message: 2
To: [EMAIL PROTECTED]
Subject: understanding tftp
From: "John-Paul Delaney" <[EMAIL PROTECTED]>
Date: Wed, 19 Mar 2003 10:56:15 +0100
Reply-To: [EMAIL PROTECTED]

This is a multipart message in MIME format.
--=_alternative 00368DA1C1256CEE_=
Content-Type: text/plain; charset="US-ASCII"

Hello List...

I'm having problems setting up a tftp server on my rh8.0 box.  I want to
use it to backup cisco router configurations.

I've created a file called startup-config in the tftpboot directory with
chmod 777 and chown nobody:nobody.  The directory tftpboot is also 777,
nobody:nobody.

>From the router I try a "copy startup-config tftp", and input the ip
address at the next prompt.  I then get the error:
%Error opening tftp://10.11.35.28/startup-config (Undefined error)

In /var/log/messages I find a long list of errors:
..." in.tftpd[31383]: cannot bind to local socket:  Address already in
use"


The output of netstat -a | grep tftp is:
udp   0  0   *:tftp  *:*


Thanks - Any help on this would be greatly appreciated.
/j-p.




-- 
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list

RE: understanding tftp

RE: understanding tftp

RE: understanding tftp

RE: understanding tftp

Re: understanding tftp

Re: understanding tftp

Re: understanding tftp

Re: understanding tftp

Re: understanding tftp

RE: understanding tftp

Re: understanding tftp (apologies if received as html)

RE: understanding tftp

12 matches

Site Navigation

Mail list logo

Footer information