Telnet connection had been closed by a foreign host












1














The client PC IP: 10.49.46.5/24 and the server PC IP: 10.49.46.2/24 are two computers linked to the same network.
When I try to create an interactive communication between these two computers using the command telnet, I get the following:



[root@xxx:~]# telnet 10.49.46.2

Trying 10.49.46.2...

Connected to 10.49.46.2.

Escape character is '^]'.



Connection closed by foreign host.

[root@xxx:~]#


The server xinetd.conf are as follows:



    defaults

    {

            instances               = 60

            log_type                = SYSLOG authpriv

            log_on_success          = HOST PID EXIT

            log_on_failure          = HOST ATTEMPT

            cps                     = 25 30

    }

includedir /etc/xinetd.d


The server telnet.config are as follows:



service telnet

{

        flags           = REUSE

        socket_type     = stream

        wait            = no

        user            = root

        server          = /usr/sbin/telnetd

        log_on_failure  += USERID

        instances       = 10

        disable         = no

}


The TCPWrapper hosts.allow are:



telnetd: /etc/telnetd.hosts

tfdpd: /etc/tftpd.hosts

sshd: /etc/sshd.hosts


The TCPWrapper hosts.deny are:



ALL:ALL


NOW:




  1. I checked ssh and it is running on port 22.

  2. I checked /var/log/message and had found that the command xinetd starts and then exits the telnet immediately.

  3. I checked that iptables do not drop telnet package using the command: iptables -L


Would you please help me figure out what is the problem and how can I fix it?






linux telnet xinetd tcp-wrappers







share|improve this question
















bumped to the homepage by Community 14 hours ago


This question has answers that may be good or bad; the system has marked it active so that they can be reviewed.















  • What's listening on the server side?
    – Kusalananda
    Sep 23 '17 at 8:39










  • At a guess, the default timeout on the remote server (say a webserver) was hit and the connection was disconnected. Copy your list of commands (or at least the initial connection command) to the clipboard and paste them as soon as the connection is established.
    – Tigger
    Sep 23 '17 at 9:13










  • @Tigger I updated my question
    – Yuri
    Sep 23 '17 at 9:35
















1














The client PC IP: 10.49.46.5/24 and the server PC IP: 10.49.46.2/24 are two computers linked to the same network.
When I try to create an interactive communication between these two computers using the command telnet, I get the following:



[root@xxx:~]# telnet 10.49.46.2

Trying 10.49.46.2...

Connected to 10.49.46.2.

Escape character is '^]'.



Connection closed by foreign host.

[root@xxx:~]#


The server xinetd.conf are as follows:



    defaults

    {

            instances               = 60

            log_type                = SYSLOG authpriv

            log_on_success          = HOST PID EXIT

            log_on_failure          = HOST ATTEMPT

            cps                     = 25 30

    }

includedir /etc/xinetd.d


The server telnet.config are as follows:



service telnet

{

        flags           = REUSE

        socket_type     = stream

        wait            = no

        user            = root

        server          = /usr/sbin/telnetd

        log_on_failure  += USERID

        instances       = 10

        disable         = no

}


The TCPWrapper hosts.allow are:



telnetd: /etc/telnetd.hosts

tfdpd: /etc/tftpd.hosts

sshd: /etc/sshd.hosts


The TCPWrapper hosts.deny are:



ALL:ALL


NOW:




  1. I checked ssh and it is running on port 22.

  2. I checked /var/log/message and had found that the command xinetd starts and then exits the telnet immediately.

  3. I checked that iptables do not drop telnet package using the command: iptables -L


Would you please help me figure out what is the problem and how can I fix it?






linux telnet xinetd tcp-wrappers







share|improve this question
















bumped to the homepage by Community 14 hours ago


This question has answers that may be good or bad; the system has marked it active so that they can be reviewed.















  • What's listening on the server side?
    – Kusalananda
    Sep 23 '17 at 8:39










  • At a guess, the default timeout on the remote server (say a webserver) was hit and the connection was disconnected. Copy your list of commands (or at least the initial connection command) to the clipboard and paste them as soon as the connection is established.
    – Tigger
    Sep 23 '17 at 9:13










  • @Tigger I updated my question
    – Yuri
    Sep 23 '17 at 9:35














1












1








1


1





The client PC IP: 10.49.46.5/24 and the server PC IP: 10.49.46.2/24 are two computers linked to the same network.
When I try to create an interactive communication between these two computers using the command telnet, I get the following:



[root@xxx:~]# telnet 10.49.46.2

Trying 10.49.46.2...

Connected to 10.49.46.2.

Escape character is '^]'.



Connection closed by foreign host.

[root@xxx:~]#


The server xinetd.conf are as follows:



    defaults

    {

            instances               = 60

            log_type                = SYSLOG authpriv

            log_on_success          = HOST PID EXIT

            log_on_failure          = HOST ATTEMPT

            cps                     = 25 30

    }

includedir /etc/xinetd.d


The server telnet.config are as follows:



service telnet

{

        flags           = REUSE

        socket_type     = stream

        wait            = no

        user            = root

        server          = /usr/sbin/telnetd

        log_on_failure  += USERID

        instances       = 10

        disable         = no

}


The TCPWrapper hosts.allow are:



telnetd: /etc/telnetd.hosts

tfdpd: /etc/tftpd.hosts

sshd: /etc/sshd.hosts


The TCPWrapper hosts.deny are:



ALL:ALL


NOW:




  1. I checked ssh and it is running on port 22.

  2. I checked /var/log/message and had found that the command xinetd starts and then exits the telnet immediately.

  3. I checked that iptables do not drop telnet package using the command: iptables -L


Would you please help me figure out what is the problem and how can I fix it?






linux telnet xinetd tcp-wrappers







share|improve this question















The client PC IP: 10.49.46.5/24 and the server PC IP: 10.49.46.2/24 are two computers linked to the same network.
When I try to create an interactive communication between these two computers using the command telnet, I get the following:



[root@xxx:~]# telnet 10.49.46.2

Trying 10.49.46.2...

Connected to 10.49.46.2.

Escape character is '^]'.



Connection closed by foreign host.

[root@xxx:~]#


The server xinetd.conf are as follows:



    defaults

    {

            instances               = 60

            log_type                = SYSLOG authpriv

            log_on_success          = HOST PID EXIT

            log_on_failure          = HOST ATTEMPT

            cps                     = 25 30

    }

includedir /etc/xinetd.d


The server telnet.config are as follows:



service telnet

{

        flags           = REUSE

        socket_type     = stream

        wait            = no

        user            = root

        server          = /usr/sbin/telnetd

        log_on_failure  += USERID

        instances       = 10

        disable         = no

}


The TCPWrapper hosts.allow are:



telnetd: /etc/telnetd.hosts

tfdpd: /etc/tftpd.hosts

sshd: /etc/sshd.hosts


The TCPWrapper hosts.deny are:



ALL:ALL


NOW:




  1. I checked ssh and it is running on port 22.

  2. I checked /var/log/message and had found that the command xinetd starts and then exits the telnet immediately.

  3. I checked that iptables do not drop telnet package using the command: iptables -L


Would you please help me figure out what is the problem and how can I fix it?






linux telnet xinetd tcp-wrappers




linux telnet xinetd tcp-wrappers






share|improve this question















share|improve this question













share|improve this question




share|improve this question








edited Sep 3 at 16:24









Jeff Schaller

38.5k1053125




38.5k1053125










asked Sep 23 '17 at 8:12









Yuri

6113




6113





bumped to the homepage by Community 14 hours ago


This question has answers that may be good or bad; the system has marked it active so that they can be reviewed.







bumped to the homepage by Community 14 hours ago


This question has answers that may be good or bad; the system has marked it active so that they can be reviewed.














  • What's listening on the server side?
    – Kusalananda
    Sep 23 '17 at 8:39










  • At a guess, the default timeout on the remote server (say a webserver) was hit and the connection was disconnected. Copy your list of commands (or at least the initial connection command) to the clipboard and paste them as soon as the connection is established.
    – Tigger
    Sep 23 '17 at 9:13










  • @Tigger I updated my question
    – Yuri
    Sep 23 '17 at 9:35


















  • What's listening on the server side?
    – Kusalananda
    Sep 23 '17 at 8:39










  • At a guess, the default timeout on the remote server (say a webserver) was hit and the connection was disconnected. Copy your list of commands (or at least the initial connection command) to the clipboard and paste them as soon as the connection is established.
    – Tigger
    Sep 23 '17 at 9:13










  • @Tigger I updated my question
    – Yuri
    Sep 23 '17 at 9:35
















What's listening on the server side?
– Kusalananda
Sep 23 '17 at 8:39




What's listening on the server side?
– Kusalananda
Sep 23 '17 at 8:39












At a guess, the default timeout on the remote server (say a webserver) was hit and the connection was disconnected. Copy your list of commands (or at least the initial connection command) to the clipboard and paste them as soon as the connection is established.
– Tigger
Sep 23 '17 at 9:13




At a guess, the default timeout on the remote server (say a webserver) was hit and the connection was disconnected. Copy your list of commands (or at least the initial connection command) to the clipboard and paste them as soon as the connection is established.
– Tigger
Sep 23 '17 at 9:13












@Tigger I updated my question
– Yuri
Sep 23 '17 at 9:35




@Tigger I updated my question
– Yuri
Sep 23 '17 at 9:35










2 Answers
2






active

oldest

votes


















1














[root@xxx:~]# telnet 10.49.46.2

Trying 10.49.46.2...

Connected to 10.49.46.2.

Escape character is '^]'.


This means that you have successfully established a TCP connection to the remote daemon. What daemon? The xinetd one which serves as a hub. Now that you are connected, xinetd attempts to launch the specific service (telnet).



Connection closed by foreign host.


This means that launching the telnet service failed. You may want to add debugging options to the telnetd command line and read xinetd logs to see what exactly failed.




You appear to be running the BusyBox version of telnetd. Contrary to classic versions of telnetd, the one provided with Busybox is a standalone daemon which needs a -i option to interface with inetd (services launched by inetd have a specific interface incompatible with a standalone daemon: they must not open and listen to sockets, they must communicate with the client through stdin/stdout).



Your xinetd configuration should thus be:



service telnet

{

        flags           = REUSE

        socket_type     = stream

        wait            = no

        user            = root

        server          = /usr/sbin/telnetd

        server_args     = -i

        log_on_failure  += USERID

        instances       = 10

        disable         = no

}





share|improve this answer























  • The questioner has been reading logs. What the log said is in the question. The questioner is not launching telnetd as a standalone daemon. That, too, is in the question. The xinetd configuration snippet to launch telnetd is right there, as indeed is the fact that xinetd logged launching it. And the executable could be either telnetd or in.telnetd, neither name implying a standalone daemon. One implies GNU inetutils and other implies BSD telnetd, both launchable via (x)inetd.
    – JdeBP
    Sep 23 '17 at 12:41












  • @JdeBP Thanks, that's right that I didn't the OP carefully enough. I tried to address your points by amending my answer.
    – xhienne
    Sep 25 '17 at 22:27










  • @xhienne Yes, I use BusyBox v1.25.0.git (checked by busybox | head -1 command) and linux kernel version: 4.0.0-xilinx-00007-g5dab41c-dirty (checked by uname -r command). I changed telnet config file (/etc/xinetd.d/telnet) to add -i option as you mentioned (server = /usr/sbin/telnetd -i) but it had a new issue: Connection refused. I have stopped and started xinetd again but it's not different.
    – Yuri
    Sep 26 '17 at 2:55












  • @xhienne I tried with server_args = /usr/sbin/telnetd -i, nothing change :)
    – Yuri
    Sep 26 '17 at 6:41










  • @Yuri Connection refused means that the telnet service is not set up (misconfiguration I guess). The telnet port should be open and connection should be accepted, as in you original question. I don't have the Openwrt's xinetd manual at hand. However, the Debian version states "In contrast to inetd, the server name should not be included in server_args". Try with just -i. You may add -l date to the args for your tests: if the telnet daemon writes the date, your configuration is ok.
    – xhienne
    Sep 26 '17 at 22:57





















0














xhienne makes some good points. The TCP handshake is completing. That the connection is then closed means one of 2 things.



1) The telnetd service is failing when it starts (check your logs)



2) the client you are connecting from is not listed in /etc/telnetd.hosts (check your logs, or rename /etc/hosts.deny temporarily to confirm)




The client IP: 10.49.46.5/24




No, IP host addresses don't have network masks.



And please stop using telnetd. Every time you telnet a kitten cries. (use ssh or telnet-tls)






share|improve this answer





















  • The TCP wrappers library is used by inetd, not by telnetd. Why would inetd start telnetd (as reported in the question) if your client is denied access by the /etc/hosts.* files ?
    – xhienne
    Sep 25 '17 at 22:32












  • @xhienne: no. TCP wrappers will be used by any daemon compiled against Weistse Venema's socket library, If telnetd is run as a daemon and linked to the library, it will use hosts.all/deny. inetd and xinetd are usually compiled against the library. /etc/hosts does not grant/deny access - its the the data file for file based host name service. The behaviour you describe (connect, then close) is entirely consistent with the behaviour of TCP wrappers. Its also consistent with a badly configured [x]inetd. Instead of arguing, would it be so hard to text?
    – symcbean
    Sep 25 '17 at 22:46












  • Not sure what you mean by "to text". If you don't want to argue, just don't elaborate on a /etc/hosts file that I didn't even mention and just answer my one and only question. OP states that xinetd starts telnet and exits immediately. xinetd has no reason to do so if your access is denied.
    – xhienne
    Sep 25 '17 at 23:47










  • Sorry typo - not text / test.
    – symcbean
    Sep 26 '17 at 9:28










  • "host addresses don't have network masks." they don't, but it's a very convenient useful and appropriate way of signifying the subnet mask.
    – roaima
    12 hours ago











Your Answer








StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "106"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});

function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: false,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: null,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});


}
});














draft saved

draft discarded


















StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f393959%2ftelnet-connection-had-been-closed-by-a-foreign-host%23new-answer', 'question_page');
}
);

Post as a guest















Required, but never shown

























2 Answers
2






active

oldest

votes








2 Answers
2






active

oldest

votes









active

oldest

votes






active

oldest

votes









1














[root@xxx:~]# telnet 10.49.46.2

Trying 10.49.46.2...

Connected to 10.49.46.2.

Escape character is '^]'.


This means that you have successfully established a TCP connection to the remote daemon. What daemon? The xinetd one which serves as a hub. Now that you are connected, xinetd attempts to launch the specific service (telnet).



Connection closed by foreign host.


This means that launching the telnet service failed. You may want to add debugging options to the telnetd command line and read xinetd logs to see what exactly failed.




You appear to be running the BusyBox version of telnetd. Contrary to classic versions of telnetd, the one provided with Busybox is a standalone daemon which needs a -i option to interface with inetd (services launched by inetd have a specific interface incompatible with a standalone daemon: they must not open and listen to sockets, they must communicate with the client through stdin/stdout).



Your xinetd configuration should thus be:



service telnet

{

        flags           = REUSE

        socket_type     = stream

        wait            = no

        user            = root

        server          = /usr/sbin/telnetd

        server_args     = -i

        log_on_failure  += USERID

        instances       = 10

        disable         = no

}





share|improve this answer























  • The questioner has been reading logs. What the log said is in the question. The questioner is not launching telnetd as a standalone daemon. That, too, is in the question. The xinetd configuration snippet to launch telnetd is right there, as indeed is the fact that xinetd logged launching it. And the executable could be either telnetd or in.telnetd, neither name implying a standalone daemon. One implies GNU inetutils and other implies BSD telnetd, both launchable via (x)inetd.
    – JdeBP
    Sep 23 '17 at 12:41












  • @JdeBP Thanks, that's right that I didn't the OP carefully enough. I tried to address your points by amending my answer.
    – xhienne
    Sep 25 '17 at 22:27










  • @xhienne Yes, I use BusyBox v1.25.0.git (checked by busybox | head -1 command) and linux kernel version: 4.0.0-xilinx-00007-g5dab41c-dirty (checked by uname -r command). I changed telnet config file (/etc/xinetd.d/telnet) to add -i option as you mentioned (server = /usr/sbin/telnetd -i) but it had a new issue: Connection refused. I have stopped and started xinetd again but it's not different.
    – Yuri
    Sep 26 '17 at 2:55












  • @xhienne I tried with server_args = /usr/sbin/telnetd -i, nothing change :)
    – Yuri
    Sep 26 '17 at 6:41










  • @Yuri Connection refused means that the telnet service is not set up (misconfiguration I guess). The telnet port should be open and connection should be accepted, as in you original question. I don't have the Openwrt's xinetd manual at hand. However, the Debian version states "In contrast to inetd, the server name should not be included in server_args". Try with just -i. You may add -l date to the args for your tests: if the telnet daemon writes the date, your configuration is ok.
    – xhienne
    Sep 26 '17 at 22:57


















1














[root@xxx:~]# telnet 10.49.46.2

Trying 10.49.46.2...

Connected to 10.49.46.2.

Escape character is '^]'.


This means that you have successfully established a TCP connection to the remote daemon. What daemon? The xinetd one which serves as a hub. Now that you are connected, xinetd attempts to launch the specific service (telnet).



Connection closed by foreign host.


This means that launching the telnet service failed. You may want to add debugging options to the telnetd command line and read xinetd logs to see what exactly failed.




You appear to be running the BusyBox version of telnetd. Contrary to classic versions of telnetd, the one provided with Busybox is a standalone daemon which needs a -i option to interface with inetd (services launched by inetd have a specific interface incompatible with a standalone daemon: they must not open and listen to sockets, they must communicate with the client through stdin/stdout).



Your xinetd configuration should thus be:



service telnet

{

        flags           = REUSE

        socket_type     = stream

        wait            = no

        user            = root

        server          = /usr/sbin/telnetd

        server_args     = -i

        log_on_failure  += USERID

        instances       = 10

        disable         = no

}





share|improve this answer























  • The questioner has been reading logs. What the log said is in the question. The questioner is not launching telnetd as a standalone daemon. That, too, is in the question. The xinetd configuration snippet to launch telnetd is right there, as indeed is the fact that xinetd logged launching it. And the executable could be either telnetd or in.telnetd, neither name implying a standalone daemon. One implies GNU inetutils and other implies BSD telnetd, both launchable via (x)inetd.
    – JdeBP
    Sep 23 '17 at 12:41












  • @JdeBP Thanks, that's right that I didn't the OP carefully enough. I tried to address your points by amending my answer.
    – xhienne
    Sep 25 '17 at 22:27










  • @xhienne Yes, I use BusyBox v1.25.0.git (checked by busybox | head -1 command) and linux kernel version: 4.0.0-xilinx-00007-g5dab41c-dirty (checked by uname -r command). I changed telnet config file (/etc/xinetd.d/telnet) to add -i option as you mentioned (server = /usr/sbin/telnetd -i) but it had a new issue: Connection refused. I have stopped and started xinetd again but it's not different.
    – Yuri
    Sep 26 '17 at 2:55












  • @xhienne I tried with server_args = /usr/sbin/telnetd -i, nothing change :)
    – Yuri
    Sep 26 '17 at 6:41










  • @Yuri Connection refused means that the telnet service is not set up (misconfiguration I guess). The telnet port should be open and connection should be accepted, as in you original question. I don't have the Openwrt's xinetd manual at hand. However, the Debian version states "In contrast to inetd, the server name should not be included in server_args". Try with just -i. You may add -l date to the args for your tests: if the telnet daemon writes the date, your configuration is ok.
    – xhienne
    Sep 26 '17 at 22:57
















1












1








1






[root@xxx:~]# telnet 10.49.46.2

Trying 10.49.46.2...

Connected to 10.49.46.2.

Escape character is '^]'.


This means that you have successfully established a TCP connection to the remote daemon. What daemon? The xinetd one which serves as a hub. Now that you are connected, xinetd attempts to launch the specific service (telnet).



Connection closed by foreign host.


This means that launching the telnet service failed. You may want to add debugging options to the telnetd command line and read xinetd logs to see what exactly failed.




You appear to be running the BusyBox version of telnetd. Contrary to classic versions of telnetd, the one provided with Busybox is a standalone daemon which needs a -i option to interface with inetd (services launched by inetd have a specific interface incompatible with a standalone daemon: they must not open and listen to sockets, they must communicate with the client through stdin/stdout).



Your xinetd configuration should thus be:



service telnet

{

        flags           = REUSE

        socket_type     = stream

        wait            = no

        user            = root

        server          = /usr/sbin/telnetd

        server_args     = -i

        log_on_failure  += USERID

        instances       = 10

        disable         = no

}





share|improve this answer














[root@xxx:~]# telnet 10.49.46.2

Trying 10.49.46.2...

Connected to 10.49.46.2.

Escape character is '^]'.


This means that you have successfully established a TCP connection to the remote daemon. What daemon? The xinetd one which serves as a hub. Now that you are connected, xinetd attempts to launch the specific service (telnet).



Connection closed by foreign host.


This means that launching the telnet service failed. You may want to add debugging options to the telnetd command line and read xinetd logs to see what exactly failed.




You appear to be running the BusyBox version of telnetd. Contrary to classic versions of telnetd, the one provided with Busybox is a standalone daemon which needs a -i option to interface with inetd (services launched by inetd have a specific interface incompatible with a standalone daemon: they must not open and listen to sockets, they must communicate with the client through stdin/stdout).



Your xinetd configuration should thus be:



service telnet

{

        flags           = REUSE

        socket_type     = stream

        wait            = no

        user            = root

        server          = /usr/sbin/telnetd

        server_args     = -i

        log_on_failure  += USERID

        instances       = 10

        disable         = no

}






share|improve this answer














share|improve this answer



share|improve this answer








edited Sep 26 '17 at 22:53

























answered Sep 23 '17 at 11:33









xhienne

12k2654




12k2654












  • The questioner has been reading logs. What the log said is in the question. The questioner is not launching telnetd as a standalone daemon. That, too, is in the question. The xinetd configuration snippet to launch telnetd is right there, as indeed is the fact that xinetd logged launching it. And the executable could be either telnetd or in.telnetd, neither name implying a standalone daemon. One implies GNU inetutils and other implies BSD telnetd, both launchable via (x)inetd.
    – JdeBP
    Sep 23 '17 at 12:41












  • @JdeBP Thanks, that's right that I didn't the OP carefully enough. I tried to address your points by amending my answer.
    – xhienne
    Sep 25 '17 at 22:27










  • @xhienne Yes, I use BusyBox v1.25.0.git (checked by busybox | head -1 command) and linux kernel version: 4.0.0-xilinx-00007-g5dab41c-dirty (checked by uname -r command). I changed telnet config file (/etc/xinetd.d/telnet) to add -i option as you mentioned (server = /usr/sbin/telnetd -i) but it had a new issue: Connection refused. I have stopped and started xinetd again but it's not different.
    – Yuri
    Sep 26 '17 at 2:55












  • @xhienne I tried with server_args = /usr/sbin/telnetd -i, nothing change :)
    – Yuri
    Sep 26 '17 at 6:41










  • @Yuri Connection refused means that the telnet service is not set up (misconfiguration I guess). The telnet port should be open and connection should be accepted, as in you original question. I don't have the Openwrt's xinetd manual at hand. However, the Debian version states "In contrast to inetd, the server name should not be included in server_args". Try with just -i. You may add -l date to the args for your tests: if the telnet daemon writes the date, your configuration is ok.
    – xhienne
    Sep 26 '17 at 22:57




















  • The questioner has been reading logs. What the log said is in the question. The questioner is not launching telnetd as a standalone daemon. That, too, is in the question. The xinetd configuration snippet to launch telnetd is right there, as indeed is the fact that xinetd logged launching it. And the executable could be either telnetd or in.telnetd, neither name implying a standalone daemon. One implies GNU inetutils and other implies BSD telnetd, both launchable via (x)inetd.
    – JdeBP
    Sep 23 '17 at 12:41












  • @JdeBP Thanks, that's right that I didn't the OP carefully enough. I tried to address your points by amending my answer.
    – xhienne
    Sep 25 '17 at 22:27










  • @xhienne Yes, I use BusyBox v1.25.0.git (checked by busybox | head -1 command) and linux kernel version: 4.0.0-xilinx-00007-g5dab41c-dirty (checked by uname -r command). I changed telnet config file (/etc/xinetd.d/telnet) to add -i option as you mentioned (server = /usr/sbin/telnetd -i) but it had a new issue: Connection refused. I have stopped and started xinetd again but it's not different.
    – Yuri
    Sep 26 '17 at 2:55












  • @xhienne I tried with server_args = /usr/sbin/telnetd -i, nothing change :)
    – Yuri
    Sep 26 '17 at 6:41










  • @Yuri Connection refused means that the telnet service is not set up (misconfiguration I guess). The telnet port should be open and connection should be accepted, as in you original question. I don't have the Openwrt's xinetd manual at hand. However, the Debian version states "In contrast to inetd, the server name should not be included in server_args". Try with just -i. You may add -l date to the args for your tests: if the telnet daemon writes the date, your configuration is ok.
    – xhienne
    Sep 26 '17 at 22:57


















The questioner has been reading logs. What the log said is in the question. The questioner is not launching telnetd as a standalone daemon. That, too, is in the question. The xinetd configuration snippet to launch telnetd is right there, as indeed is the fact that xinetd logged launching it. And the executable could be either telnetd or in.telnetd, neither name implying a standalone daemon. One implies GNU inetutils and other implies BSD telnetd, both launchable via (x)inetd.
– JdeBP
Sep 23 '17 at 12:41






The questioner has been reading logs. What the log said is in the question. The questioner is not launching telnetd as a standalone daemon. That, too, is in the question. The xinetd configuration snippet to launch telnetd is right there, as indeed is the fact that xinetd logged launching it. And the executable could be either telnetd or in.telnetd, neither name implying a standalone daemon. One implies GNU inetutils and other implies BSD telnetd, both launchable via (x)inetd.
– JdeBP
Sep 23 '17 at 12:41














@JdeBP Thanks, that's right that I didn't the OP carefully enough. I tried to address your points by amending my answer.
– xhienne
Sep 25 '17 at 22:27




@JdeBP Thanks, that's right that I didn't the OP carefully enough. I tried to address your points by amending my answer.
– xhienne
Sep 25 '17 at 22:27












@xhienne Yes, I use BusyBox v1.25.0.git (checked by busybox | head -1 command) and linux kernel version: 4.0.0-xilinx-00007-g5dab41c-dirty (checked by uname -r command). I changed telnet config file (/etc/xinetd.d/telnet) to add -i option as you mentioned (server = /usr/sbin/telnetd -i) but it had a new issue: Connection refused. I have stopped and started xinetd again but it's not different.
– Yuri
Sep 26 '17 at 2:55






@xhienne Yes, I use BusyBox v1.25.0.git (checked by busybox | head -1 command) and linux kernel version: 4.0.0-xilinx-00007-g5dab41c-dirty (checked by uname -r command). I changed telnet config file (/etc/xinetd.d/telnet) to add -i option as you mentioned (server = /usr/sbin/telnetd -i) but it had a new issue: Connection refused. I have stopped and started xinetd again but it's not different.
– Yuri
Sep 26 '17 at 2:55














@xhienne I tried with server_args = /usr/sbin/telnetd -i, nothing change :)
– Yuri
Sep 26 '17 at 6:41




@xhienne I tried with server_args = /usr/sbin/telnetd -i, nothing change :)
– Yuri
Sep 26 '17 at 6:41












@Yuri Connection refused means that the telnet service is not set up (misconfiguration I guess). The telnet port should be open and connection should be accepted, as in you original question. I don't have the Openwrt's xinetd manual at hand. However, the Debian version states "In contrast to inetd, the server name should not be included in server_args". Try with just -i. You may add -l date to the args for your tests: if the telnet daemon writes the date, your configuration is ok.
– xhienne
Sep 26 '17 at 22:57






@Yuri Connection refused means that the telnet service is not set up (misconfiguration I guess). The telnet port should be open and connection should be accepted, as in you original question. I don't have the Openwrt's xinetd manual at hand. However, the Debian version states "In contrast to inetd, the server name should not be included in server_args". Try with just -i. You may add -l date to the args for your tests: if the telnet daemon writes the date, your configuration is ok.
– xhienne
Sep 26 '17 at 22:57















0














xhienne makes some good points. The TCP handshake is completing. That the connection is then closed means one of 2 things.



1) The telnetd service is failing when it starts (check your logs)



2) the client you are connecting from is not listed in /etc/telnetd.hosts (check your logs, or rename /etc/hosts.deny temporarily to confirm)




The client IP: 10.49.46.5/24




No, IP host addresses don't have network masks.



And please stop using telnetd. Every time you telnet a kitten cries. (use ssh or telnet-tls)






share|improve this answer





















  • The TCP wrappers library is used by inetd, not by telnetd. Why would inetd start telnetd (as reported in the question) if your client is denied access by the /etc/hosts.* files ?
    – xhienne
    Sep 25 '17 at 22:32












  • @xhienne: no. TCP wrappers will be used by any daemon compiled against Weistse Venema's socket library, If telnetd is run as a daemon and linked to the library, it will use hosts.all/deny. inetd and xinetd are usually compiled against the library. /etc/hosts does not grant/deny access - its the the data file for file based host name service. The behaviour you describe (connect, then close) is entirely consistent with the behaviour of TCP wrappers. Its also consistent with a badly configured [x]inetd. Instead of arguing, would it be so hard to text?
    – symcbean
    Sep 25 '17 at 22:46












  • Not sure what you mean by "to text". If you don't want to argue, just don't elaborate on a /etc/hosts file that I didn't even mention and just answer my one and only question. OP states that xinetd starts telnet and exits immediately. xinetd has no reason to do so if your access is denied.
    – xhienne
    Sep 25 '17 at 23:47










  • Sorry typo - not text / test.
    – symcbean
    Sep 26 '17 at 9:28










  • "host addresses don't have network masks." they don't, but it's a very convenient useful and appropriate way of signifying the subnet mask.
    – roaima
    12 hours ago
















0














xhienne makes some good points. The TCP handshake is completing. That the connection is then closed means one of 2 things.



1) The telnetd service is failing when it starts (check your logs)



2) the client you are connecting from is not listed in /etc/telnetd.hosts (check your logs, or rename /etc/hosts.deny temporarily to confirm)




The client IP: 10.49.46.5/24




No, IP host addresses don't have network masks.



And please stop using telnetd. Every time you telnet a kitten cries. (use ssh or telnet-tls)






share|improve this answer





















  • The TCP wrappers library is used by inetd, not by telnetd. Why would inetd start telnetd (as reported in the question) if your client is denied access by the /etc/hosts.* files ?
    – xhienne
    Sep 25 '17 at 22:32












  • @xhienne: no. TCP wrappers will be used by any daemon compiled against Weistse Venema's socket library, If telnetd is run as a daemon and linked to the library, it will use hosts.all/deny. inetd and xinetd are usually compiled against the library. /etc/hosts does not grant/deny access - its the the data file for file based host name service. The behaviour you describe (connect, then close) is entirely consistent with the behaviour of TCP wrappers. Its also consistent with a badly configured [x]inetd. Instead of arguing, would it be so hard to text?
    – symcbean
    Sep 25 '17 at 22:46












  • Not sure what you mean by "to text". If you don't want to argue, just don't elaborate on a /etc/hosts file that I didn't even mention and just answer my one and only question. OP states that xinetd starts telnet and exits immediately. xinetd has no reason to do so if your access is denied.
    – xhienne
    Sep 25 '17 at 23:47










  • Sorry typo - not text / test.
    – symcbean
    Sep 26 '17 at 9:28










  • "host addresses don't have network masks." they don't, but it's a very convenient useful and appropriate way of signifying the subnet mask.
    – roaima
    12 hours ago














0












0








0






xhienne makes some good points. The TCP handshake is completing. That the connection is then closed means one of 2 things.



1) The telnetd service is failing when it starts (check your logs)



2) the client you are connecting from is not listed in /etc/telnetd.hosts (check your logs, or rename /etc/hosts.deny temporarily to confirm)




The client IP: 10.49.46.5/24




No, IP host addresses don't have network masks.



And please stop using telnetd. Every time you telnet a kitten cries. (use ssh or telnet-tls)






share|improve this answer












xhienne makes some good points. The TCP handshake is completing. That the connection is then closed means one of 2 things.



1) The telnetd service is failing when it starts (check your logs)



2) the client you are connecting from is not listed in /etc/telnetd.hosts (check your logs, or rename /etc/hosts.deny temporarily to confirm)




The client IP: 10.49.46.5/24




No, IP host addresses don't have network masks.



And please stop using telnetd. Every time you telnet a kitten cries. (use ssh or telnet-tls)







share|improve this answer












share|improve this answer



share|improve this answer










answered Sep 25 '17 at 21:19









symcbean

2,27911121




2,27911121












  • The TCP wrappers library is used by inetd, not by telnetd. Why would inetd start telnetd (as reported in the question) if your client is denied access by the /etc/hosts.* files ?
    – xhienne
    Sep 25 '17 at 22:32












  • @xhienne: no. TCP wrappers will be used by any daemon compiled against Weistse Venema's socket library, If telnetd is run as a daemon and linked to the library, it will use hosts.all/deny. inetd and xinetd are usually compiled against the library. /etc/hosts does not grant/deny access - its the the data file for file based host name service. The behaviour you describe (connect, then close) is entirely consistent with the behaviour of TCP wrappers. Its also consistent with a badly configured [x]inetd. Instead of arguing, would it be so hard to text?
    – symcbean
    Sep 25 '17 at 22:46












  • Not sure what you mean by "to text". If you don't want to argue, just don't elaborate on a /etc/hosts file that I didn't even mention and just answer my one and only question. OP states that xinetd starts telnet and exits immediately. xinetd has no reason to do so if your access is denied.
    – xhienne
    Sep 25 '17 at 23:47










  • Sorry typo - not text / test.
    – symcbean
    Sep 26 '17 at 9:28










  • "host addresses don't have network masks." they don't, but it's a very convenient useful and appropriate way of signifying the subnet mask.
    – roaima
    12 hours ago


















  • The TCP wrappers library is used by inetd, not by telnetd. Why would inetd start telnetd (as reported in the question) if your client is denied access by the /etc/hosts.* files ?
    – xhienne
    Sep 25 '17 at 22:32












  • @xhienne: no. TCP wrappers will be used by any daemon compiled against Weistse Venema's socket library, If telnetd is run as a daemon and linked to the library, it will use hosts.all/deny. inetd and xinetd are usually compiled against the library. /etc/hosts does not grant/deny access - its the the data file for file based host name service. The behaviour you describe (connect, then close) is entirely consistent with the behaviour of TCP wrappers. Its also consistent with a badly configured [x]inetd. Instead of arguing, would it be so hard to text?
    – symcbean
    Sep 25 '17 at 22:46












  • Not sure what you mean by "to text". If you don't want to argue, just don't elaborate on a /etc/hosts file that I didn't even mention and just answer my one and only question. OP states that xinetd starts telnet and exits immediately. xinetd has no reason to do so if your access is denied.
    – xhienne
    Sep 25 '17 at 23:47










  • Sorry typo - not text / test.
    – symcbean
    Sep 26 '17 at 9:28










  • "host addresses don't have network masks." they don't, but it's a very convenient useful and appropriate way of signifying the subnet mask.
    – roaima
    12 hours ago
















The TCP wrappers library is used by inetd, not by telnetd. Why would inetd start telnetd (as reported in the question) if your client is denied access by the /etc/hosts.* files ?
– xhienne
Sep 25 '17 at 22:32






The TCP wrappers library is used by inetd, not by telnetd. Why would inetd start telnetd (as reported in the question) if your client is denied access by the /etc/hosts.* files ?
– xhienne
Sep 25 '17 at 22:32














@xhienne: no. TCP wrappers will be used by any daemon compiled against Weistse Venema's socket library, If telnetd is run as a daemon and linked to the library, it will use hosts.all/deny. inetd and xinetd are usually compiled against the library. /etc/hosts does not grant/deny access - its the the data file for file based host name service. The behaviour you describe (connect, then close) is entirely consistent with the behaviour of TCP wrappers. Its also consistent with a badly configured [x]inetd. Instead of arguing, would it be so hard to text?
– symcbean
Sep 25 '17 at 22:46






@xhienne: no. TCP wrappers will be used by any daemon compiled against Weistse Venema's socket library, If telnetd is run as a daemon and linked to the library, it will use hosts.all/deny. inetd and xinetd are usually compiled against the library. /etc/hosts does not grant/deny access - its the the data file for file based host name service. The behaviour you describe (connect, then close) is entirely consistent with the behaviour of TCP wrappers. Its also consistent with a badly configured [x]inetd. Instead of arguing, would it be so hard to text?
– symcbean
Sep 25 '17 at 22:46














Not sure what you mean by "to text". If you don't want to argue, just don't elaborate on a /etc/hosts file that I didn't even mention and just answer my one and only question. OP states that xinetd starts telnet and exits immediately. xinetd has no reason to do so if your access is denied.
– xhienne
Sep 25 '17 at 23:47




Not sure what you mean by "to text". If you don't want to argue, just don't elaborate on a /etc/hosts file that I didn't even mention and just answer my one and only question. OP states that xinetd starts telnet and exits immediately. xinetd has no reason to do so if your access is denied.
– xhienne
Sep 25 '17 at 23:47












Sorry typo - not text / test.
– symcbean
Sep 26 '17 at 9:28




Sorry typo - not text / test.
– symcbean
Sep 26 '17 at 9:28












"host addresses don't have network masks." they don't, but it's a very convenient useful and appropriate way of signifying the subnet mask.
– roaima
12 hours ago




"host addresses don't have network masks." they don't, but it's a very convenient useful and appropriate way of signifying the subnet mask.
– roaima
12 hours ago


















draft saved

draft discarded




















































Thanks for contributing an answer to Unix & Linux Stack Exchange!


  • Please be sure to answer the question. Provide details and share your research!

But avoid



  • Asking for help, clarification, or responding to other answers.

  • Making statements based on opinion; back them up with references or personal experience.


To learn more, see our tips on writing great answers.





Some of your past answers have not been well-received, and you're in danger of being blocked from answering.


Please pay close attention to the following guidance:


  • Please be sure to answer the question. Provide details and share your research!

But avoid



  • Asking for help, clarification, or responding to other answers.

  • Making statements based on opinion; back them up with references or personal experience.


To learn more, see our tips on writing great answers.




draft saved


draft discarded














StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f393959%2ftelnet-connection-had-been-closed-by-a-foreign-host%23new-answer', 'question_page');
}
);

Post as a guest















Required, but never shown





















































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown

































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown







-

Popular posts from this blog

Entries order in /etc/network/interfaces

Image
4 I have a device with two interfaces, eth0 and eth1. One should get its IP from a DHCP server and the other should get its IP statically. If my /etc/network/interfaces file is configured as follows: auto lo iface lo inet loopback auto eth1 iface eth1 inet dhcp iface eth1 inet6 auto auto eth0 iface eth0 inet static address 10.10.10.10 netmask 255.255.255.0 Everything works great, eth1 gets its IP from the DHCP server, eth0 sets its IP statically from the information given, but if I try to change the order in the file, such as auto lo iface lo inet loopback auto eth0 iface eth0 inet static address 10.10.10.10 netmask 255.255.255.0 auto eth1 iface eth1 inet dhcp iface eth1 inet6 auto In this case, eth1 fails to get an IP. Does the /etc/network/interface care about th...
Read more

新発田市

Image
しばたし 新発田市 市のシンボル・新発田城(二の丸隅櫓) 新発田市旗 1934年7月9日制定 新発田市章 1934年7月9日制定 国 日本 地方 中部地方、北陸地方 甲信越地方、信越地方 都道府県 新潟県 団体コード 15206-4 法人番号 5000020152064 面積 533.10 km 2 総人口 96,267 人 [編集] (推計人口、2018年10月1日) 人口密度 181 人/km 2 隣接自治体 新潟市、阿賀野市、胎内市、北蒲原郡聖籠町、東蒲原郡阿賀町 福島県喜多方市 山形県西置賜郡小国町 市の木 サクラ 市の花 アヤメ 市のシンボル 新発田城 新発田市役所 市長 [編集] 二階堂馨 所在地 〒 957-8686 新潟県新発田市中央町3丁目3番3号 北緯37度56分52.5秒東経139度19分38.2秒 外部リンク 公式ウェブサイト ■ ― 政令指定都市 / ■ ― 市 / ■ ― 町 / ■ ― 村 地理院地図 Google Bing GeoHack MapFan Mapion Yahoo! NAVITIME ゼンリン   表示   ウィキプロジェクト 新発田市中心部周辺の空中写真。 1975年撮影の8枚を合成作成。国土交通省 国土画像情報(カラー空中写真)を基に作成。 新発田市 (しばたし)は、新潟県下越地方にある市である。新潟市への通勤率は16.6%(平成22年国勢調査)。 目次 1 概要 2 地理 2.1 隣接している自治体・行政区 3 地域・市街地構成 4 歴史 4.1 市名の由来 4.2 沿革 5 人口 6 行政 6.1 市長 7 経済 7.1 産業 7.1.1 市内の主な企業 7.1.2 漁業 8 姉妹都市・提携都市 8.1 国内 8.2 海外 9 施設・...
Read more

Grub takes very long (several minutes) to open Menu (in Multi-Boot-System)

Image
0 I have a Multi-Boot-System with 4 different installations of Linux. (1 Manjaro, 3 Mint) spread over 2 hard drives (2 on each). After doing grub-install /dev/sdX and update-grub several times within each installation ... the Grub-menu needs more and more time to open. It started with a few more seconds, now it takes several minutes. I tried to purge and reinstall Grub but this made the problem even worse: apt-get purge grub grub-pc grub-common apt-get install grub-common grub-pc os-prober update-grub What could be causing this problem? linux grub2 multiboot share | improve this question edited 4 mins ago ...
Read more