![](https://seccdn.libravatar.org/avatar/6b2f7f596b3fb41ddcd27d8d596dcc57.jpg?s=120&d=mm&r=g)
why not just precede the specific line in /etc/.inetd.con with the ip(s) to listen on? like 192.168.20.17:telnet stream tcp nowait root /usr/sbin/tcpd in.telnetd this does only work for services startet by inetd of course. lars. On Fri, Oct 19, 2001 at 10:41:46AM -0500, dog@intop.net wrote:
oh, and to get telnet to only listen on the internal device, well thats another story. you can edit your /etc/hosts.allow file to include in.telnetd: yyy.yyy.yyy. : ALLOW where yyy.yyy.yyy. is the internal network then in /etc/hosts.deny put ALL: ALL
but that doesnt stop telnet from listening, only keeps people from connecting. (you need the tcpd rpm installed for this by the way)
another method would be to restrict both sendmail and telnet via ipchains or iptables.