Re: hosts.equiv / .rhosts

Wed, 23 Oct 2002 08:39:44 -0700 

Here is how I altered my 
/etc/pam.d/rsh
and
/etc/pam.d/rlogin to accomplish this on a closed network

#%PAM-1.0
# For root login to succeed here with pam_securetty, "rsh" must be
# listed in /etc/securetty.
auth       sufficient     /lib/security/pam_rhosts_auth.so
auth       required     /lib/security/pam_nologin.so
auth       required     /lib/security/pam_securetty.so
auth       required     /lib/security/pam_env.so
account    required     /lib/security/pam_stack.so service=system-auth
session    required     /lib/security/pam_stack.so service=system-auth
[rweidman@node2 pam.d]$ more rlogin
#%PAM-1.0
# For root login to succeed here with pam_securetty, "rlogin" must be
# listed in /etc/securetty.
auth       required     /lib/security/pam_nologin.so
auth       required     /lib/security/pam_securetty.so
auth       required     /lib/security/pam_env.so
auth       sufficient   /lib/security/pam_rhosts_auth.so
auth       required     /lib/security/pam_stack.so service=system-auth
account    required     /lib/security/pam_stack.so service=system-auth
password   required     /lib/security/pam_stack.so service=system-auth
session    required     /lib/security/pam_stack.so service=system-auth



On Wed, 23 Oct 
2002, Mike Boger wrote:

> Hello List,
> 
> Can anyone give me some tips as to how to either get rid of PAM or disable
> it so my users on a trusted network can rsh to my Red Hat nodes without a
> password? I'm using NIS+ for authentication. I have several HPUX and Solaris
> boxes that I use in this capacity without a problem.....
> 
> Any tips will be appreciated.
> 
> Thanks,
> Mike
> 
> 
> 
> 

-- 
Randy Weidman
Linux Systems Administrator
University of Missouri
Dept. Of Chemical Engineering
 
Rhode's Law:
        When any principle, law, tenet, probability, happening, circumstance,
        or result can in no way be directly, indirectly, empirically, or
        circuitously proven, derived, implied, inferred, induced, deducted,
        estimated, or scientifically guessed, it will always for the purpose
        of convenience, expediency, political advantage, material gain, or
        personal comfort, or any combination of the above, or none of the
        above, be unilaterally and unequivocally assumed, proclaimed, and
        adhered to as absolute truth to be undeniably, universally, immutably,
        and infinitely so, until such time as it becomes advantageous to
        assume otherwise, maybe.



-- 
redhat-list mailing list
unsubscribe mailto:redhat-list-request@;redhat.com?subject=unsubscribe
https://listman.redhat.com/mailman/listinfo/redhat-list

Reply via email to