https://community.hpe.com/t5/operating-system-hp-ux/rlogin/m-p/2426726#M1569 Hi,<BR /><BR />don't know if your users know the root password but when not rlogin as root without password is controlled via /.rhosts<BR />If you remove the /.rhosts rlogin as root requieres passord. Tue, 20 Jun 2000 12:47:19 GMT Andreas Voss 2000-06-20T12:47:19Z https://community.hpe.com/t5/operating-system-hp-ux/rlogin/m-p/2426725#M1568 How do I prevent user from rlogining as root.<BR /><BR />Thanks,<BR /><BR />Junior Tue, 20 Jun 2000 12:43:12 GMT https://community.hpe.com/t5/operating-system-hp-ux/rlogin/m-p/2426725#M1568 Junior C. 2000-06-20T12:43:12Z https://community.hpe.com/t5/operating-system-hp-ux/rlogin/m-p/2426726#M1569 Hi,<BR /><BR />don't know if your users know the root password but when not rlogin as root without password is controlled via /.rhosts<BR />If you remove the /.rhosts rlogin as root requieres passord. Tue, 20 Jun 2000 12:47:19 GMT https://community.hpe.com/t5/operating-system-hp-ux/rlogin/m-p/2426726#M1569 Andreas Voss 2000-06-20T12:47:19Z https://community.hpe.com/t5/operating-system-hp-ux/rlogin/m-p/2426727#M1570 Hi, <BR /><BR />You can prevent anyone from connecting directly as root, either using rlogin or telnet, by configuring the /etc/securetty.<BR />If you just put "console" in this file, you will be able to connect directly as root only from the console. Keep at least this entry.<BR /><BR />To become root form other terminals, you will have to use the su(1) command.<BR /><BR />greetings<BR />benoit marc Tue, 20 Jun 2000 12:47:46 GMT https://community.hpe.com/t5/operating-system-hp-ux/rlogin/m-p/2426727#M1570 Benoit MARC 2000-06-20T12:47:46Z https://community.hpe.com/t5/operating-system-hp-ux/rlogin/m-p/2426728#M1571 One way is to create a .rhosts file in the user's home directory on the remote system. For instance, if user1 on system1 needs to rlogin to system2, create a .rhosts file in /home/user1 on system2 as follows:<BR /><BR /> system1 user1<BR /><BR />This allows user1 to rlogin or remsh to system2. <BR /><BR />In addition, to prevent anyone from using rlogin as root, do not configure a .rhosts file in the root directory.<BR /><BR />Hope this helps. Tue, 20 Jun 2000 12:51:15 GMT https://community.hpe.com/t5/operating-system-hp-ux/rlogin/m-p/2426728#M1571 Steven W. Illgen 2000-06-20T12:51:15Z https://community.hpe.com/t5/operating-system-hp-ux/rlogin/m-p/2426729#M1572 you have to remove "station?? root" entry in /.rhosts file, or delete this file. Users must be listed in this file to be able to do<BR />rlogin. Tue, 20 Jun 2000 12:51:20 GMT https://community.hpe.com/t5/operating-system-hp-ux/rlogin/m-p/2426729#M1572 Jasmin Berube 2000-06-20T12:51:20Z https://community.hpe.com/t5/operating-system-hp-ux/rlogin/m-p/2426730#M1573 Junior,<BR /><BR />There are two files associated with rlogin on HP-UX, they are:<BR /><BR />/etc/hosts.equiv and ~/.rhosts<BR /><BR />If the mahine name and/or user root are in these files, then the rlogin door is opened for the root user.<BR /><BR />to prevent root from rlogin access perform the following.<BR /><BR />&gt; /etc/hosts.equiv <BR />(that is shorthand for:<BR />cat /dev/null &gt; /etc/hosts.equiv)<BR />&gt; ~root/.rhosts<BR /><BR />that will eliminate rlogin access from any machine for the root user.<BR /><BR />To prevent rlogin access for all users, then you'll need to check the entire server for .rhosts files for all users. If you find them, delete them and recreate them as the root user, securing them so the user cannto modify the file.<BR /><BR />Hope that helps.<BR /> Tue, 20 Jun 2000 12:51:42 GMT https://community.hpe.com/t5/operating-system-hp-ux/rlogin/m-p/2426730#M1573 Albert E. Whale, CISSP 2000-06-20T12:51:42Z https://community.hpe.com/t5/operating-system-hp-ux/rlogin/m-p/2426731#M1574 Comment out login in /etc/inetd.conf and <BR />login in /etc/services (port 513). re-read inetd.conf with #inetd -c.<BR /><BR />Berlene Tue, 20 Jun 2000 13:20:12 GMT https://community.hpe.com/t5/operating-system-hp-ux/rlogin/m-p/2426731#M1574 Berlene Herren 2000-06-20T13:20:12Z