From mboxrd@z Thu Jan 1 00:00:00 1970 From: b4@gewt.net (Cory Smelosky) Date: Thu, 09 Mar 2017 18:09:02 -0800 Subject: [TUHS] UUCP: working systems, come and get them In-Reply-To: <20170310020635.GB14221@minnie.tuhs.org> References: <20170307070941.GA2012@minnie.tuhs.org> <20170307090908.GA9793@minnie.tuhs.org> <20170307204307.GA23160@minnie.tuhs.org> <20170308092052.GA13593@minnie.tuhs.org> <20170310020635.GB14221@minnie.tuhs.org> Message-ID: <1489111742.2097812.906527728.5E461E40@webmail.messagingengine.com> On Thu, Mar 9, 2017, at 18:06, Warren Toomey wrote: > On Thu, Mar 09, 2017 at 06:49:45PM -0700, John Floren wrote: > > I've now got it working and it made me think a little. > > > > In order to do these "serial ports over TCP" things, we basically are > > putting login prompts out to the Internet. Is it possible to restrict > > things so the only user allowed on ttyN is 'uucp', or should I just > > put in iptables rules to only allow traffic from my UUCP peers? > > Yes, I'm trying to work on that. There is a way set some DZ lines > to listen on port Y and the others on port X. > > sim> ATTACH DZ X,Line=3,Y,line=4,Z > > But there isn't a way to bind to localhost AFAICT. So we should be able > to > run uucico only on certain /dev/tty lines, but this still will require > you to iptables block the other port. > > Unless someone has a way to bind simh DZ lines to localhost? sim> att dz -m 127.0.0.1:5000 Listening on port 127.0.0.1:5000 Modem control activated Trying 127.0.0.1... Connected to localhost. Escape character is '^]'. Connected to the VAX 11/780 simulator DZ device, line 1 [root at lethe] ~# telnet 10.12.10.1 5000 Trying 10.12.10.1... telnet: connect to address 10.12.10.1: Connection refused telnet: Unable to connect to remote host > > Cheers, Warren > Email had 1 attachment: > + signature.asc > 1k (application/pgp-signature) -- Cory Smelosky b4 at gewt.net