Command Line Interface
Chapter 15 121
1. Modify the /etc/services file as follows. Change lines starting with ’radius’
and ’radacct’ to the socket numbers you wish. For example:
radius 1645/tcp
radius 1645/ucp
radacct 1646/tcp
radacct 1646/ucp
2. After editing /etc/services copy it to /usr2
cp /etc/services /usr2
3. Edit /usr2/rc.user and add the following line just above "exit 0":
cp -a /usr2/services /etc/services
4. Reboot
reboot
Note: If you factory default the unit, the ’/usr2/rc.user’ script file is moved to ’/usr2/
rc.user.old#’ and the default rc.user file will be restored.
Example Script: Limiting root access to the console on Digi CM products (for SSH only)
This prevents root access from any means except physically logging in on
the Digi CM console.
1. Modify ’/etc/inetd.conf’ and append -f /usr2/sshd_config to the sshd line.
cp /etc/inetd.conf /usr2/inetd.conf
2. Edit ’/etc/ss h/sshd_config’. Change "PermitRootLogin" to no.
cp /etc/ssh/sshd_config /usr2
3. Add the following commands in the ’/usr2/rc.user’ script. Add these
commands just above "exit 0":
cp -a /usr2/inetd.conf /etc/inetd.conf
while killall inetd 2>/dev/null;
do sleep 5;
done
/usr/sbin/inetd
4. Reboot
reboot
Note: If you factory default the unit, the ’/usr2/rc.user’ script file is moved to ’/usr2/
rc.user.old#’ and the default rc.user file will be restored.
Example Script: Sending a break from an existing session wit h the Digi CM
From a Telnet session - If the Telnet was initiated from a UNIX command line
Telnet client. Issuing the Telnet escape sequence ’^]’ (control-
right_square_bracket) will take you to the ’telnet>’ prompt.
telnet>send brk
Note: Other Telnet clients often have a "send break" option.
From an ssh session - Type the [tilde-break] which is the defaul t ssh break
characters.
~break