Secure TTY on a 3B2
Geoff Coleman
geoff at edm.uucp
Thu Oct 11 15:14:28 AEST 1990
>From article <12695 at vpk2.UUCP>, by craig at attcan.UUCP (Craig Campbell):
>
>
> With regards to being able to access "root" on various systems via a TCP link,
> I would like to suggest the following scenario.
>
> WARNING: This does not require SOURCE CODE or Kernel rebuilds, so those
> who prefer difficult solutions, hit 'n' now. 8-)
>
> First, you must be root on the system you are starting on. Log in as anyone
> and then su. This is the only su you will require. Now on any other system
> you wish to rlogin to, there must exist an entry for your current system in
> both /etc/hosts and /.rhosts.
The problem with this is called security. If a user finds root
password on one machines he now has access to root on all machines that have
the corresponding /.rhosts.
At least with the 386 Unix you can get rid of the console only root
login by editing /etc/defaults/login.
Geoff Coleman
> (P.S. I am not a TCP/IP guru, this is just standard practice. It will work
^^^^^^^^
At what sites?
> Better to remain silent and be thought a fool,
> than to open your mouth and remove all doubt.
> - I have no idea.
pps. Where's the disclaimer Craig (or are these Ma bell's words)?
More information about the Comp.sys.att
mailing list