Date: Fri, 2 Jul 110 01:18:50 -0700 (PDT) From: Jim Dennis <jimd@mistery.mcafee.com> To: terry@lambert.org (Terry Lambert) Cc: mc7953@mclink.it, questions@freebsd.org Subject: Re: rlogin as root refused Message-ID: <201007020818.BAA22985@mistery.mcafee.com> In-Reply-To: <199607012209.PAA06700@phaeton.artisoft.com> from "Terry Lambert" at Jul 1, 96 03:09:51 pm
next in thread | previous in thread | raw e-mail | index | archive | help
> > > I'm getting problems doing rlogin as root, always when towards FreeBSD > > machines. > > I can do rsh generic commands and rcp, but not rlogin. > > I set a "+" in the ~root/.rhosts file, but this doesn't suffice. > > It is *dangerous* to do this. You want to specify particular machines > and users, if you allow this at all. I agree. Use 'su -' or build and configure 'sudo'. > The pty's do not allow root login. This is a security option which > you *can* turn off. We advise against it strongly (so strongly, > that by default we don't allow it, and you have to turn it off). I think this is a wise design choice (even if you think your machine is "safe" behind packet filters, and firewalls, and even if you've installed and correctly configured TCP Wrappers). Jim Dennis, former System Administrator, McAfee Associates
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201007020818.BAA22985>