[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: rshd and securetty



On Thu, 20 Feb 1997, Han Holl wrote:

> The distributed /etc/pam.conf contains (and has always contained)
> the following line:
> 
> rsh     auth       required     /lib/security/pam_securetty.so
> 
> I have to remove this line to get rcp and friends to work, and I
> really don't understand what it is supposed to do.
> 
> If I want to "rcp remotemachine:/tmp/somefile .", which tty on
> remotemachine must be secure ?
> (Apart from removing the line from /etc/pam.conf, I also can get rcp
> to work by putting _all_ tty* devices in /etc/securetty, which isn't
> a good idea at all).

The securetty module only applies to root. The idea is to stop root from
making insecure connections over the network.

Instead of using rcp/rsh/rlogin, why not use scp/ssh/slogin?

Hope this helps,
-- Elliot Lee
   http://www.redhat.com/             http://www.linuxexpo.org/



[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index] []