From owner-freebsd-hackers  Thu Apr 18 14:15:20 1996
Return-Path: owner-hackers
Received: (from root@localhost)
          by freefall.freebsd.org (8.7.3/8.7.3) id OAA09598
          for hackers-outgoing; Thu, 18 Apr 1996 14:15:20 -0700 (PDT)
Received: from irz301.inf.tu-dresden.de (irz301.inf.tu-dresden.de [141.76.1.11])
          by freefall.freebsd.org (8.7.3/8.7.3) with SMTP id OAA09591
          for <freebsd-hackers@freebsd.org>; Thu, 18 Apr 1996 14:15:11 -0700 (PDT)
Received: from sax.sax.de by irz301.inf.tu-dresden.de (8.6.12/8.6.12-s1) with ESMTP id XAA25817; Thu, 18 Apr 1996 23:10:40 +0200
Received: by sax.sax.de (8.6.11/8.6.12-s1) with UUCP
	id XAA22166; Thu, 18 Apr 1996 23:10:17 +0200
Received: (from j@localhost) by uriah.heep.sax.de (8.7.5/8.6.9) id WAA02177; Thu, 18 Apr 1996 22:38:46 +0200 (MET DST)
From: J Wunsch <j@uriah.heep.sax.de>
Message-Id: <199604182038.WAA02177@uriah.heep.sax.de>
Subject: Re: Extra option for rlogind?
To: freebsd-hackers@freebsd.org (FreeBSD hackers)
Date: Thu, 18 Apr 1996 22:38:45 +0200 (MET DST)
Cc: jraynard@dial.pipex.com (James Raynard)
Reply-To: joerg_wunsch@uriah.heep.sax.de (Joerg Wunsch)
In-Reply-To: <199604171606.QAA00530@dial.pipex.com> from "James Raynard" at Apr 17, 96 04:06:08 pm
X-Phone: +49-351-2012 669
X-Mailer: ELM [version 2.4 PL24 ME8a]
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Sender: owner-hackers@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk

As James Raynard wrote:

> >Our rlogind has a -s flag which will only read .rhosts files if they are 
> >owned by root.  So users cannot create their own .rhosts files, without 
> >root knowing about it.  
> >More work for the sysadmin, and mabye not feasible on a machine with a lot 
> >of users, but it works for us.
> 
> This would be very easy to add, as per the following (untested)
> patches. Would this be a worthwhile addition, or is it just another
> silly Linux gimmick? 8-)

I don't really like it.  If some admin is notorious about security, he
can simply turn off rlogin/rsh, and force the people to use ssh
instead.  That would (IMO) make more sense.

(Btw., if i were at such a site, i wouldn't trust root, and
immediately remove the .rhosts, in particular if it's not readable for
me. :-)

-- 
cheers, J"org

joerg_wunsch@uriah.heep.sax.de -- http://www.sax.de/~joerg/ -- NIC: JW11-RIPE
Never trust an operating system you don't have sources for. ;-)