1. 查看linux版本信息:
[loong@localhost ~]$ cat /etc/issue CentOS release 5.8 (Final) Kernel \r on an \m
2. 查看系統是否已安裝telnet-server,linux系統上默認已經安裝telnet-client(或telnet),而telnet-server需要手動安裝。
[loong@localhost ~]$ rpm -qa | grep telnet telnet-0.17-39.el5
3. 安裝telnet-server,若系統已安裝,跳過此步。
方法一:下載RPM resource telnet-server,下載地址:http://rpmfind.net/linux/rpm2html/search.php?query=telnet-server
選擇相應版本的telnet-server下載;
安裝:# rpm -i telnet-server-0.17-39.el5.i386.rpm #貌似還得單獨安裝xinetd.
方法二:(推薦使用)
# yum install telnet-server
安裝完成後:
[loong@localhost ~]$ rpm -qa | grep telnet telnet-0.17-39.el5 telnet-server-0.17-39.el5
4. 啓動telnet服務
方法一:System->Administration->Services 中,
在On Demand Services中選中telnet,
並在Background Services中選中xinetd,並點擊上面的Start,即在右側顯示:xinetd (pid 15986) is running...
最後Save & Quit.
方法二:編輯/etc/xinetd.d/telnet, 將其中的 disable = yes 的yes改爲no.
修改後:
# default: on
# description: The telnet server serves telnet sessions; it uses \
# unencrypted username/password pairs for authentication.
service telnet
{
disable = no
flags = REUSE
socket_type = stream
wait = no
user = root
server = /usr/sbin/in.telnetd
log_on_failure += USERID
}
方法三:使用chkconfig命令直接開啓
注:方法二和方法三,需要激活xinetd服務。方法如下:
[root@localhost loong]# service xinetd restart Stopping xinetd: [ OK ] Starting xinetd: [ OK ]
或:
[root@localhost loong]# /etc/rc.d/init.d/xinetd restart Stopping xinetd: [ OK ] Starting xinetd: [ OK ]
5. 測試服務
[root@localhost loong]# telnet localhost Trying 127.0.0.1... Connected to localhost.localdomain (127.0.0.1). Escape character is '^]'. CentOS release 5.8 (Final) Kernel 2.6.18-308.1.1.el5 on an i686 login: loong Password: Last login: Tue Apr 24 16:42:06 from 10.108.14.135 [loong@localhost ~]$ exit logout Connection closed by foreign host. [root@localhost loong]#
注:默認情況下,系統只允許普通用戶telnet登錄,不允許root用戶登錄。
要想獲得root權限,可以使用普通用戶登錄,然後執行su,來獲得root權限。
或使用一下方法,允許root登錄telnet:
方法一:# mv /etc/securetty /etc/securetty.bak (不建議這種方法,測試完後再改回去吧!)
或先試圖使用root用戶登錄,不成功,然後查看系統log:
telnet> o localhost Trying 127.0.0.1... Connected to localhost.localdomain (127.0.0.1). Escape character is '^]'. CentOS release 5.8 (Final) Kernel 2.6.18-308.1.1.el5 on an i686 login: root Password: Login incorrect login: Login incorrect login: Login incorrect login: Connection closed by foreign host. [root@localhost loong]# tail -20 /var/log/secure Apr 24 17:32:58 localhost login: pam_securetty(remote:auth): access denied: tty 'pts/1' is not secure ! Apr 24 17:33:03 localhost login: FAILED LOGIN 1 FROM localhost FOR root, Authentication failure
可以看到 access denied: tty 'pts/1' is not secure !
所以將‘pts/1’添加到/etc/securetty中,即可實現telnet的root用戶登錄。至於爲什麼?暫不清楚。
方法二:修改/etc/pam.d/remote,註釋掉:auth required pam_securetty.so
1 #%PAM-1.0 2 #auth required pam_securetty.so 3 auth include system-auth
注:不建議開放telnet的root登錄,容易帶來安全隱患。