Hi, i had followed the same approach.First I checked whether the SQLNET service is listed in /etc/services.It was not , so i added an entry to the same.Next I denied access to this service in hosts.deny for a particular IP , but still the machine with the specified IP(the one to whom the SQLNET service was denied) is able to connect to oracle.The service is not listed in xinetd.d.What shud i do next ? How do i locate the file related to the SQLNET service ?
Regards, Sneh.
On Tue, 21 Dec 2004 crisppy f wrote :
--- Sneh D my_linux@rediffmail.com wrote:
Hi all, I have Oracle Server Installed on RHEL on an IBM Server.I want to restrict access to oracle from specific machines on the network.I tried denying access to the SQLNET service by adding an entry into the /etc/hosts.deny file,but it isn't working.Now I don't know how to achieve this.I'll be greatful if anyone on the list helps me out ith this. Regards, SD.
your approach should be....
1.you should deny for SQLNET service for all users in host.deny and then in host.allow give access to specific users.
- make sure this service is under xinetd and if not
then host.allow or deny file will not work as you want.
- if 1 not work and this service is under xinetd.d
then open file related to sqlnet service and there in section where disable = no is mentioned there in the list you can specify the directive--- only_from = host/network range.
i hoope this will work otherwise mail if required...
Yahoo! India Matrimony: Find your life partner online Go to: http://yahoo.shaadi.com/india-matrimony
--- Sneh D my_linux@rediffmail.com wrote:
Hi, i had followed the same approach.First I checked whether the SQLNET service is listed in /etc/services.It was not , so i added an entry to the same.Next I denied access to this service in hosts.deny for a particular IP , but still the machine with the specified IP(the one to whom the SQLNET service was denied) is able to connect to oracle.The service is not listed in xinetd.d.What shud i do next ? How do i locate the file related to the SQLNET service ?
Regards, Sneh.
hi you can use host.allow deny with only those services which are under xinetd.d. otherwise you can not. As trevor also mailed you. now abt your problem if its independent service like http ftp etc. then you can have solution. It means for every indepent service can have there restricted access for example in httpd we define .htaccess file if we want to allow to specific users. similarly you can definitely get the solution but do some R&D.
good luck and if able to found then mail us also
linuxbee
On Tue, 21 Dec 2004 crisppy f wrote :
--- Sneh D my_linux@rediffmail.com wrote:
Hi all, I have Oracle Server Installed on RHEL on an
IBM
Server.I want to restrict access to oracle from specific machines on the network.I tried denying access to the SQLNET service by adding an entry
into
the /etc/hosts.deny file,but it isn't
working.Now I
don't know how to achieve this.I'll be greatful
if
anyone on the list helps me out ith this. Regards, SD.
your approach should be....
1.you should deny for SQLNET service for all users
in
host.deny and then in host.allow give access to specific users.
- make sure this service is under xinetd and if
not
then host.allow or deny file will not work as you want.
- if 1 not work and this service is under xinetd.d
then open file related to sqlnet service and there
in
section where disable = no is mentioned there in
the
list you can specify the directive--- only_from = host/network range.
i hoope this will work otherwise mail if
required...
--
http://mm.ilug-bom.org.in/mailman/listinfo/linuxers
Yahoo! India Matrimony: Find your life partner
online
________________________________________________________________________ Yahoo! India Matrimony: Find your life partner online Go to: http://yahoo.shaadi.com/india-matrimony
-
crisppy f -
Sneh D