search for: rlogind

IF ssh is a replacement for rlogin,rsh etc I can accept it respecting rlogin=false as rlogin does and rsh does not, however scp is a replacement for rcp, and rcp does NOT use rlogin attribute, so the implementation is NOT standard as scp fails if rlogin=false, but rcp succeeds, as documented. thanks mark

...oot /usr/libexec/ftpd ftpd -l telnet stream tcp nowait root /usr/libexec/telnetd telnetd #telnet stream tcp6 nowait root /usr/libexec/telnetd telnetd #shell stream tcp nowait root /usr/libexec/rshd rshd #shell stream tcp6 nowait root /usr/libexec/rshd rshd #login stream tcp nowait root /usr/libexec/rlogind rlogind #login stream tcp6 nowait root /usr/libexec/rlogind rlogind #finger stream tcp nowait/3/10 nobody /usr/libexec/fingerd fingerd -s #finger stream tcp6 nowait/3/10 nobody /usr/libexec/fingerd fingerd -s #exec stream tcp nowait root /usr/libexec/rexecd rexecd #uucpd stream tcp nowait root /usr...

...sufficient pam_rhosts_auth.so promiscuous auth required pam_securetty.so auth required pam_env.so auth include system-auth account include system-auth password include system-auth session include system-auth /etc/securetty rsh rlogin rlogind rexec console vc/1 vc/2 vc/3 vc/4 vc/5 . . . /etc/xinetd.d/rexec:: # description: Rexecd is the server for the rexec(3) routine. The server \ # provides remote execution facilities with authentication based \ # on user names and passwords. service exec { socket_type...

I'm running FreeBSD 4.6.2 on two different machines. Both machines have rync installed by way of the ports library, but one of them is running it as a server. I followed the directions in the man pages for running the server using inetd. Here is what happens: rsync rsync://myusername@10.0.0.8/ rsync: server sent "rysnc version 2.5.5 protocol version 26" rather than

...o require NTLM authentication. My attempts to configure ntml were foiled - for some reason the OS thinks I don''t have admin privileges (I do). Any suggestions? I''m willing to pay money if you think there''s a commercial product out there that''s worth it (I saw rlogind from MKS Software - any good?), but I would prefer a free solution if possible. You can email me offline (djberg96 at gmail dot com) if you prefer to take this offline. Thanks, Dan

greeting. a short while ago, i may have gone to a site i should not have. maybe. after visiting, i decided i would check for rpm updates. when yumex opened to available packages, it showed that; openssl.x86_64 0:1.0.1e-42.el6_7.4 was available, so i checked it, then clicked install button. during log display, i got error message, tried again. still got error. seems that there is a

...sure the /etc/inetd.conf file does not contain any of the following entries uncommented (i.e. if present in the inetd.conf file they should be commented out as shown below:) #shell stream tcp nowait root /usr/libexec/rshd rshd #login stream tcp nowait root /usr/libexec/rlogind rlogind #exec stream tcp nowait root /usr/libexec/rexecd rexecd Be sure to restart inetd by sending it a HUP signal after making any changes: # kill -HUP `cat /var/run/inetd.pid` Audit the use of other services including those noted in section III above and either disable the...

...ecking `biff'... not found Checking `fingerd'... not found Checking `inetd'... not found Checking `inetdconf'... not found Checking `identd'... not found Checking `named'... not found Checking `pop2'... not found Checking `pop3'... not found Checking `rlogind'... not found Checking `rshd'... not found Checking `timed'... not found Checking `rexedcs'... not found can not say what was before now. -- peace out. If Bill Gates got a dime for every time Windows crashes... ...oh, wait. He does. THAT explains it! -+- in a world with...

Thanks for replying guys but: The problem I have is this: I cannot turn off telnetd and rlogind for all users in one day - they use rlogin=false for each user ie: chuser rlogin=false root Unfortunetely ssh does not allow access when this is set. I would like to use ssh at first just for root, and then for other users after testing etc. permitrootlogin is a ssh concept, not applicable to t...

...eck at its startup - is this a bit like ulimit behavior where you need need to log out and in to get it to accept the new ulimit ? The other way around works too. I could use this to start sshd up with rlogin=true, ie ssh allows access for root, then set it to false to stop access via telnetd and rlogind. Question: Is this behaviour reliable ? It does seem to me not correct that it only checks rlogin on its startup, but that said, in this case I can use it if it is lasting feature. Mark.

I have samba working find against our windows 2000/3 network under solaris 9/10. Users can attach to samba using the Kerberos credentials on their windows XP PCs. I would now like to kerberise the unix applications. Statring with the supplied Sun rlogind, telnetd, etc. As I understand things I now need to have a host key on the end systems. Will samba's net ads keytab create do this for me? And avoid me having to run ktpass.exe on windows for each and every host? I am having some trouble finding documentation on net ads keytab...

Im trying to identify how ssh 4.5 interacts with the audit subsystem within AIX 5.3. i get an event when a user logs in, but not when they exit via ssh. i can get it to work with telnet, however. It would seem to me that if an event is captured from the login, that the same would be true for the logout. I've opened a PMR w/IBM, but not getting very much help. below is an example of my

...`fingerd'... not found > Checking `inetd'... not found > Checking `inetdconf'... not found > Checking `identd'... not found > Checking `named'... not found > Checking `pop2'... not found > Checking `pop3'... not found > Checking `rlogind'... not found > Checking `rshd'... not found > Checking `timed'... not found > Checking `rexedcs'... not found > > can not say what was before now. > > You can use rpm -v -V -a to check the validity of all your packages or rpm -v -V pkgname to check a s...

...ag If the child always opens the slave side, then it should be possible to close the slaves fd in the parent before the fork. Utopia would be to never open the slave in the parent in the first place. That is where I'm somewhat confused. If all of the Linux applications like telnetd, rlogind, etc do the same thing, then it seems like they would all suffer from this problem. But, I assume that is not the case so maybe a change to the AIX pty code could be done (but I don't see how -- which is why I'm asking). So, my two basic questions are: 1) are the three paths through...

[Mod: This message is a reason *why* linux-security is moderated list. This is also a reason why Rogier, myself, Alan Cox and others really do not want to have completely open lists that deal with security related aspects of running a system as way too many people just jump to conclusions and give suggestions without doing any reasearch on a subject. -- alex (co-moderator of

...ave a similar configuration, and was getting the same problem. A long look through the sources tells the tale. Basically, the problem can be cured by adding a line like the following to /etc/hosts.allow: sshd : hostname.on.whatever.net : ALLOW ie. Just add a line like you were enabling rlogind, but for "sshd". This is necessary because your "sshd" was compiled with LIBWRAP support, and since libwrap is called from "sshd", it expects to find "sshd" in the hosts.allow. You should be seeing the tell-tale "connection refused" lines in the /v...

Hi, we're in the process of setting up large-page support on IBM regattas, but for large-page support the users have to have a set of extra capabilities (CAP_BYPASS_RAC_VMM,CAP_PROPAGATE). This are configured on a per user basis by listing which capability each user have in /etc/security/user. Unfortunately they don't get set when the users log in via OpenSSH (3.1p1). Does anybody know

Hi, I search in archive list if there any reason why is removed in openssh newer than 2.9.9 from function 'void session_close_by_channel(int id, void *arg)' sending of SIGTEMR and SIGHUP signals to child as was in 2.9.9 version? See follow sniped code from 2.9.9 sources: ---- openssh-2.9.9/session.c ---------------------------------------- void session_close_by_channel(int id, void

Darren, We have systems which are multihomed for virtualisation, but run only one sshd. You can connect to any IP-address and should be authenticated with gssapi/kerberos. So the client will ask for a principal host/virt-ip-X and the server has to have an entry for this in the keytab and has to select the right key by determining the hostname from the connection IP-address. There is no other way

I was discussing with Don about a private topic..and while skimming the code I noticed that during a 'ssh mouring at site ls' the /etc/environment is *ONLY* read if the remote machine is an AIX box. This is undocumented and I'm wondering if someone using AIX could explain WHY it exists in the session.c:do_child()? No other OS has this. I don't see why AIX should require it.