topic Re: setup automatic login for rsh/rexec in Operating System - Linux

setup automatic login for rsh/rexec

ecorban — Mon, 12 Apr 2004 18:55:02 GMT

Hi

How do i setup an linux host running AS2.1 and AS3.0 so as i dont have to be prompted for the
root password exery time i login. I already
setup the /.rhosts file but still get prompted
for a root password once i remsh from an hpux host. I need to setup this so as to run hazard on linux hosts........

Re: setup automatic login for rsh/rexec

Stuart Browne — Mon, 12 Apr 2004 19:01:04 GMT

This is dis-allowed for the 'root' user by default on most Linux boxes.

To get around it, make an entry to '/etc/securetty' that says 'rsh', and give it another shot.

If that doesn't work, then some error messages from the log files will be needed to see why it's being rejected.

Re: setup automatic login for rsh/rexec

Ernie Burns — Wed, 14 Apr 2004 11:00:30 GMT

I have attached some excerpts from some HP documents that may be of use. We had to address this issue when setting up a Data Protector client on our Linux boxes. We were using RH Linux 7.1.

Hope this helps.

Re: setup automatic login for rsh/rexec

Bill Thorsteinson — Wed, 14 Apr 2004 11:09:04 GMT

Use ssh with private keys in the authorized file. See openssh.org.

rsh/rexec is a known security hole. If you insist on using it check the docs for the configuration files and use tcpwrappers to limit access. I believe the config file is .rhosts.

Re: setup automatic login for rsh/rexec

ecorban — Wed, 14 Apr 2004 15:36:03 GMT

This is the instructions that i followed
and still get prompted for the password when i remsh (hpux host) to linux host. so whats going wrong or what am i doing incorrectly?
BTW, the previous attachemnt in the message didnt solve the issue either ?

Hash out entry in /etc/pam.d/rsh for pam_rhosts_auth
Same for /etc/pam.d/rlogin
Add pts0, pts1, rsh, rlogin,rexec to /etc/securetty
vi /root/.rhosts add +
Did the same for /etc/hosts.equiv
Add ALL + ALL to /etc/hosts.allow
Ensure disable=no in /etc/xinetd.d/rsh file
Do service xinetd -restart

Re: setup automatic login for rsh/rexec

Steven E. Protter — Wed, 14 Apr 2004 22:05:17 GMT

This is so insecure it makes me shake.

Check the permissions on the following files:

.rhosts
hosts.allow
hosts.equiv

hosts.equiv could be interfering with this operation.

SEP

Re: setup automatic login for rsh/rexec

dirk dierickx — Thu, 15 Apr 2004 02:34:36 GMT

please for the sake of god use SSH!

Re: setup automatic login for rsh/rexec

ecorban — Thu, 15 Apr 2004 12:08:04 GMT

The reason why i aint bothered with security is there test machines. hp requires a hazard test and it requires auto login to the host.

BTW, all the suggestions still dont fix the problem. Now, that should make yee shake further!!

Re: setup automatic login for rsh/rexec

Stuart Browne — Thu, 15 Apr 2004 18:10:25 GMT

Oh, one thing I didn't notice until just then.. The '.rhosts' file goes in the affected user's home directory, i.e. /root/, not /.