Operating System - HP-UX
1748051 Members
4936 Online
108757 Solutions
New Discussion юеВ

Re: Disable Root Remote Access on 10.20

 
Jason Fink_1
New Member

Disable Root Remote Access on 10.20

Just switched from 9.07 to 10.20 on a post production server and I cannot get
the thing to disable remote root access. I already installed a self referencing
.rhosts in root's home (which is not / BTW) and /etc/hosts.equiv (with the - in
front of the hostname to show no root rlogin) - which worked on 9. Already
pored over docs and a variety of UN*X books - none of their mthods work
(possibly outdated).
4 REPLIES 4
Kirk Gardner_1
New Member

Re: Disable Root Remote Access on 10.20

Check out /var/adm/inetd.sec and the corresponding man page: man 4 inetd.sec
Susan Verhey_1
New Member

Re: Disable Root Remote Access on 10.20

Have you tried the file /etc/securetty ? You can read the man page on login for
more information. Basically,
root is allowed to log in only from the ttys listed in the file.
Tim Webster_1
Occasional Advisor

Re: Disable Root Remote Access on 10.20

Hi Jason,

Susan is correct. The /etc/securetty file is the way
to control where root can log in from. If you wish to disable root directly
logging in from anywhere but the console, just put an entry for "console" in
the /etc/securetty file. You'll want to set the file to owner root and group
bin and set it to 600 for permissions.

- Tim

Re: Disable Root Remote Access on 10.20

Just remove .rhosts from roots home directory. hosts.equiv works for all users
but root.

Best regards
Jesper Sivertseb