APLawrence.com -  Resources for Unix and Linux Systems, Bloggers and the self-employed

rlogin .rhosts rhosts user equivalency


What is this stuff?

If this isn't exactly what you wanted, please try our Search (there's a LOT of techy and non-techy stuff here about Linux, Unix, Mac OS X and just computers in general!):



From: mschalit@pacbell.net (Matt Schalit)
Newsgroups: comp.unix.sco.misc
Subject: Re: Telnet Auto Login
References: <8aad59042bf9f13faffc10f31481d132.13902@mygate.mailgate.org> 
Date: Mon, 01 Oct 2001 17:13:51 GMT

On Mon, 01 Oct 2001 08:27:12 GMT, "Brian K. White" <brian@aljex.com> wrote:

>
>"Serge Bromow" <serge@omensys.com> wrote in message
>news:8aad59042bf9f13faffc10f31481d132.13902@mygate.mailgate.org...
>> Hi All,
>>
>> The systems I am using are SCO5.0.5 and
>> Linux RH7.1.
>>
>> I am trying to telnet between systems without
>> the need to enter a logon/password pair.
>> I have looked at Tony's pages and SCO's
>> (oops Caldera) pages without success.
>>
>> I have tried "telnet -a -l NAME" but I
>> am always asked for a password in SCO and
>> RedHat also asks for a Logon.
>>
>> The user "NAME" exists on both machines and
>> share the same password.
>>
>> What am I missing?
>
>try setting up user-equivalency and then using rlogin instead of telnet.
>
>for user-equivalency:
>make sure both boxes have a user account of the same name (like "root"
>already exists on both)
>make sure both hosts have hostnames, if necessary just invent names and
>define in /etc/hosts, then put the names in /etc/hosts.equiv and ~/.rhosts,
>then rlogin other-host.
>on boxa and boxb edit the following files...
>/etc/hosts:
>  127.0.0.1 localhost
>  10.0.0.200 boxa
>  10.0.0.202 boxb
>
>/etc/hosts.equiv
>  localhost
>  boxa
>  boxb
>
>~/.rhosts (do this for each user who needs it)
>  localhost
>  boxa
>  boxb
>
>also chmod 600 ~/.rhosts
>
>then to login from boxa to boxb without a password, login to boxa as one of
>the users who has a .rhosts on boxb, then:
>rlogin boxb
>this works between a sco box and a linux box too and probably any unix.
>
>you might need to verify that rlogin is present in /etc/inetd.conf of the
>box you are logging in to before it works. It comes setup and enabled out of
>the box, but some security-conscious admin or consultant may have disabled
>it at some point.
>
>as far as I can tell from the docs, you're not supposed to need both .rhosts
>and /etc/hosts.equiv. .rhosts applies to a user, hosts.equiv applies to all
>users, but so far I always need .rhosts in order for it to work. this is a
>gaping crater of a security hole so I don't set it up very often.
>
>--




There's a bit more to user equivalence then you mentioned.
If you fail to take into account the other aspects, your
users aren't equivalent.  Symptoms of this would be the "r"
commands like rlogin, and rdist not working as you'd
expect.

I wrote it up in the Uw7 FAQ,

--------------------------------------------------------------
 2.5  What is User Equivalence and why is it important?
  18 Sept 1999
  ----------------------------------------
   User equivalence exists on a network when the following
   occurs on _all_ computers on that network:

      a given user has the same username, UID, and password
      a given user belongs to the same groups
      a given group has the same GID

   This enables all users to have transparent access no matter
   what terminal they sit down at.  It also enables users to
   utilize commands such as 'rlogin.'
----------------------------------------------------------------



I didn't include any discussion of how to set up rhosts and 
host.equiv, which are needed for the 'r' commands, but I trust 
that you gave it the old college try :)
Matt
 


Got something to add? Send me email.





(OLDER)    <- More Stuff -> (NEWER)    (NEWEST)   

Printer Friendly Version

-> -> rlogin .rhosts rhosts user equivalency ––>Re: Telnet AutoLogin



Increase ad revenue 50-250% with Ezoic

Kerio Samepage


Have you tried Searching this site?

Support Rates

This is a Unix/Linux resource website. It contains technical articles about Unix, Linux and general computing related subjects, opinion, news, help files, how-to's, tutorials and more.

Contact us