Thanks to the following managers for providing solutions to my problem:
Knut Hellebų <Knut.Hellebo_at_nho.hydro.com>
Gyula Szokoly <szgyula_at_tarkus.pha.jhu.edu>
Michael Mays <mays_at_rosemary.ocis.temple.edu>
"Dr. Tom Blinn, 603-881-0646" <tpb_at_zk3.dec.com>
Original question:
>I have a problem regarding rlogin and the .rhosts file.
>I want to be able to 'rlogin machine2' from machine1. I want to create a
>.rhosts file so that I don't need to provide my password on machine2.
>My .rhosts file on both computers looks like this (note that the
>computers are on the same domain):
>
>machine1.my.domain username
>mackine2.my.domain username
>
>The .rhosts files are both chmod 0600.
>
>When I now try to 'rlogin machine2' I still need to provide a password.
>Now, if I change my .rhosts file to:
>
>machine1 username
>machine2 username
>
>then everything work as it's supposed to. BUT what about the security issue?
>Will computers at other domains with hostname machine1 be able to rlogin
>to machine2?
>
>Why doesn't my first .rhosts file work?
>
>machine1 is a AlphaStation 250 running DU4.0. I will soon upgrade to 4.0B.
>
Knut Hellebų:
Edit the /etc/svc.conf file. The 'hosts' line gives the order in which the
system searches for other computers.
Me: I changed the line from 'hosts=local,bind,yp' to 'hosts=bind,yp,local'.
Although the man pages says that 'local' should be the first entry for
the hosts database, it works. Now it seems my first '.rhosts' file can be used.
If anybody has viewpoints of this, please let me know.
Gyula Szokoly:
Suggest I should install tcp-wrappers from ftp.cert.org to disable rlogin
from other domains.
Per-Ivar
-------------------------------------------------------------------
Per-Ivar Emanuelsen | e-mail: Per-Ivar.Emanuelsen_at_phys.uit.no
The Auroral Observatory | phone: +47 77 64 51 37
University of Tromso |
-------------------------------------------------------------------
Received on Wed May 28 1997 - 14:17:01 NZST