https://community.hpe.com/t5/operating-system-hp-ux/restrict-root-access/m-p/4665656#M381406 i have made an entry as console in /etc/securetty file,but also i am able to take rlogin.<BR /><BR />how shall i restrict it. Sat, 24 Jul 2010 01:11:25 GMT newunix 2010-07-24T01:11:25Z https://community.hpe.com/t5/operating-system-hp-ux/restrict-root-access/m-p/4665656#M381406 i have made an entry as console in /etc/securetty file,but also i am able to take rlogin.<BR /><BR />how shall i restrict it. Sat, 24 Jul 2010 01:11:25 GMT https://community.hpe.com/t5/operating-system-hp-ux/restrict-root-access/m-p/4665656#M381406 newunix 2010-07-24T01:11:25Z https://community.hpe.com/t5/operating-system-hp-ux/restrict-root-access/m-p/4665657#M381407 The best practice would be to completely disable all non-encrypted login methods (telnet, rlogin, rexec and remsh) and use SSH instead. <BR /><BR />Unlike those older login methods, SSH has a flexible configuration file that can be used to configure many types of restrictions as necessary.<BR /><BR />You can disable telnet, rlogin, rexec and remsh by commenting out the appropriate lines in /etc/inetd.conf and then sending a "kill -HUP" signal to the inetd process.<BR /><BR />If you cannot disable rlogin, you should instead verify that root rlogin is not authorized in /etc/hosts.equiv or the .rhosts file in root user's home directory. Also verify that /etc/securetty has only "console" and nothing else.<BR /><BR />MK Sat, 24 Jul 2010 09:18:10 GMT https://community.hpe.com/t5/operating-system-hp-ux/restrict-root-access/m-p/4665657#M381407 Matti_Kurkela 2010-07-24T09:18:10Z