[NBLUG/talk] help with rlogin no-passwd problem

Mark Street mark at oswizards.com
Tue Feb 8 15:43:19 PST 2005 

Look at the PAM txt file I referenced below.  Read it all the way to the end.

"When "promiscuous" is not specified a '+' is handled as a negative
match."

So your +'s are being handled as a negative match.

Then take a look at /etc/pam.d/rlogin

You are dealing with PAM, Pluggable Authentication Modules here.  My guess it 
that it is failing on the following line in the rlogin file referenced above.
auth       sufficient   pam_rhosts_auth.so

You could comment that line out and see if your rlogin works, then go back and 
make it right in the /etc/pam.d/rlogin and /etc/hosts.equiv file.

On Tuesday 08 February 2005 14:59, Steve Wensel wrote:
> Yes, that's what I tried. It even fails with + +, which says to me that
> there some fundamentmental blockage. There must be something in the default
> insall configuration that blocks passwd-less rlogin.
>
> -----Original Message-----
> From: talk-bounces at nblug.org [mailto:talk-bounces at nblug.org]On Behalf Of
> Mark Street
> Sent: Tuesday, February 08, 2005 2:44 PM
> To: General NBLUG chatter about anything Linux, answers to questions,
> etc.
> Subject: Re: [NBLUG/talk] help with rlogin no-passwd problem
>
>
> Not that I would recommend or condone such behavior but.....
> ----------------------
> Let's see an example line of the hosts.equiv file.
>
> Something like;
> + at mynetgroup
>
> See /usr/share/doc/pam-0.77/txts/README.pam_rhosts
>
> PAM is your friend.... ; )
>
> On Tuesday 08 February 2005 12:00, Steve Wensel wrote:
> > Hello, I'm new to this group today. I've been using/admininstering UNIX
>
> for
>
> > over 10 years, but am fairly new to Linux.
> >
> > I'm trying to get this working using a netgroup. This is with Red Hat
> > Enterprise Linux WS (v. 3 for x86). There's an NIS server running on
> > Solaris. When I set up the /etc/hosts.equiv file with a hostname and
> > user the passwd-less rlogin works fine. When I try to use a netgroup, I
> > get this error in /var/log/messages (user,host changed): Feb 7 17:03:35
> > <hostname>
> > pam_rhosts_auth[3323]: denied to <user>@<hostname> as <user>: access
> > not allowed
> > and I have to enter the passwd.
> > I ran an experiment with just + + in the /etc/hosts.equiv and got the
> > same error. This tells me there's some fundamental problem. I've been
> > reading the docs and looking around and haven't been able to find the
> > answer. Redhat tells me that they won't help because I just have a WS
> > license with them.

-- 
Mark Street, RHCE
http://www.oswizards.com
--
Key fingerprint = 3949 39E4 6317 7C3C 023E  2B1F 6FB3 06E7 D109 56C0
GPG key http://www.oswizards.com/pubkey.asc

More information about the talk mailing list