1.编辑krb5-telnet和gssftp两个文件,将disable = yes,改为disable = no,然后重新启动xinetd
[root@node2 xinetd.d]# ls
chargen-dgram cvs daytime-stream discard-stream echo-stream ekrb5-telnet klogin kshell rmcp tcpmux-server time-dgram
chargen-stream daytime-dgram discard-dgram echo-dgram eklogin gssftp krb5-telnet ktalk rsync tftp time-stream
[root@node2 xinetd.d]# vi ekrb5-telnet
# default: off
# description: The kerberized telnet server accepts only telnet sessions, \
# which use Kerberos 5 authentication and encryption.
service telnet
{
flags = REUSE
socket_type = stream
wait = no
user = root
server = /usr/kerberos/sbin/telnetd
server_args = -e
log_on_failure += USERID
disable = no
}
[root@node2 xinetd.d]# vi gssftp
# default: off
# description: The kerberized FTP server accepts FTP connections \
# that can be authenticated with Kerberos 5.
service ftp
{
flags = REUSE
socket_type = stream
wait = no
user = root
server = /usr/kerberos/sbin/ftpd
server_args = -l -a
log_on_failure += USERID
disable = no
}
# service xinetd restart
Stopping xinetd: [ OK ]
Starting xinetd: [ OK ]
2.ftp登录报错
C:\Users\Administrator>ftp 192.168.56.101
连接到 192.168.56.102。
220 node2 FTP server (Version 5.60) ready.
用户(192.168.56.102:(none)): root
530 Must perform authentication before identifying USER.
登录失败。
ftp>
修改/etc/xinetd.d/gssftp文件,将server_args后面的-a删掉,然后重新启动xinetd服务。
# default: off
# description: The kerberized FTP server accepts FTP connections \
# that can be authenticated with Kerberos 5.
service ftp
{
flags = REUSE
socket_type = stream
wait = no
user = root
server = /usr/kerberos/sbin/ftpd
#server_args = -l -a
server_args = -l
log_on_failure += USERID
disable = no
}
# service xinetd restart
Stopping xinetd: [ OK ]
Starting xinetd: [ OK ]
C:\Users\Administrator>ftp 192.168.56.101
连接到 192.168.56.101。
220 node2 FTP server (Version 5.60) ready.
用户(192.168.56.101:(none)): root
331 Password required for root.
密码:
230 User root logged in.
ftp>
[root@node2 xinetd.d]# ls
chargen-dgram cvs daytime-stream discard-stream echo-stream ekrb5-telnet klogin kshell rmcp tcpmux-server time-dgram
chargen-stream daytime-dgram discard-dgram echo-dgram eklogin gssftp krb5-telnet ktalk rsync tftp time-stream
[root@node2 xinetd.d]# vi ekrb5-telnet
# default: off
# description: The kerberized telnet server accepts only telnet sessions, \
# which use Kerberos 5 authentication and encryption.
service telnet
{
flags = REUSE
socket_type = stream
wait = no
user = root
server = /usr/kerberos/sbin/telnetd
server_args = -e
log_on_failure += USERID
disable = no
}
[root@node2 xinetd.d]# vi gssftp
# default: off
# description: The kerberized FTP server accepts FTP connections \
# that can be authenticated with Kerberos 5.
service ftp
{
flags = REUSE
socket_type = stream
wait = no
user = root
server = /usr/kerberos/sbin/ftpd
server_args = -l -a
log_on_failure += USERID
disable = no
}
# service xinetd restart
Stopping xinetd: [ OK ]
Starting xinetd: [ OK ]
2.ftp登录报错
C:\Users\Administrator>ftp 192.168.56.101
连接到 192.168.56.102。
220 node2 FTP server (Version 5.60) ready.
用户(192.168.56.102:(none)): root
530 Must perform authentication before identifying USER.
登录失败。
ftp>
修改/etc/xinetd.d/gssftp文件,将server_args后面的-a删掉,然后重新启动xinetd服务。
# default: off
# description: The kerberized FTP server accepts FTP connections \
# that can be authenticated with Kerberos 5.
service ftp
{
flags = REUSE
socket_type = stream
wait = no
user = root
server = /usr/kerberos/sbin/ftpd
#server_args = -l -a
server_args = -l
log_on_failure += USERID
disable = no
}
# service xinetd restart
Stopping xinetd: [ OK ]
Starting xinetd: [ OK ]
C:\Users\Administrator>ftp 192.168.56.101
连接到 192.168.56.101。
220 node2 FTP server (Version 5.60) ready.
用户(192.168.56.101:(none)): root
331 Password required for root.
密码:
230 User root logged in.
ftp>