TFTPD(1M) Domain/OS SysV TFTPD(1M)
NAME
tftpd - tftp daemon
SYNOPSIS
/etc/tftpd [ directory ... ]
DESCRIPTION
Domain/OS tftpd is a Trivial File Transfer Protocol (TFTP) server that is
called by inetd(1M) when another host requests the tftp(1C) service. It
then handles tftp file transfers in accordance with RFC783.
The Domain/OS tftpd server is configured to run by uncommenting the line
for the tftp service in the /etc/inetd.conf file. The line for the tftp
service must specify a userid for tftp requests. The read and write
privileges of this userid determine the access rights for tftp requests
from other hosts. In the interest of security, this userid should not be
root, but rather a userid with restricted rights. The tftpd command on
the line for the tftp service in /etc/inet.conf can optionally specify up
to four directories for file transfer. Files can then be read and
written in these directories or any of their subdirectories, in addition
to the default set of directories containing the string "/tftp".
Directories specified by the tftpd command must have the same format as
incoming tftp file requests. Thus, directory names must be pathnames
beginning with "/" but not with "//" and not containing the string
"/../".
The Domain/OS tftpd server places restrictions on which files may be
accessed as remote files by incoming tftp requests. File names must be
pathnames beginning with "/" but not with "//" and not containing the
string "/../". In addition, file names must either contain the string
"/tftp" or begin with one of the directory names specified by the tftpd
command when that server was invoked. Furthermore, remote files may be
read only if the configured tftpd userid has read access to them, and
remote files may be written only if they do not already exist and if the
configured tftpd userid has write access to them.
NOTE
The Domain/OS versions of tftp and tftpd are adaptations of the MIT
Project Athena implementation of the TFTP protocol, as described in
RFC783. Domain/OS tftp will interface with any RFC783-compliant
implementation. Note, however, that the 4.3BSD distribution version of
tftp does not meet these restrictions.
WARNING
tftp allows users to copy files across an internet without login or
authentication on any remote host running a tftpd server. If the tftpd
server on a host is configured and run to allow tftp transactions, the
file access restrictions imposed by that tftpd server provide the only
security for files on that host. Therefore, the desired security of a
host should be considered before configuring and running the tftpd server
to allow tftp transactions.
SEE ALSO
tftp(1C), inetd(1M);
Configuring and Managing TCP/IP;
Using TCP/IP Network Applications.