Prevent a user from accessing a server

Raj Kairam_1 · ‎02-18-2000

How can I prevent a non-essential-user from logging in to the server via
'rlogin -l ' command in an xterm window on
his workstation?.
The non-essential-user has an account on his machine and the
/users//.rhosts has one line like '+ id>'. On this machine, logging in as root, I see .rhosts file containing a line
like '+@cad_proj root'.
Does this mean that the member users and hosts, of which non-essential-user is
one, contained in cad_proj all have root privileges and can login on to the
server as the important-user-on-server?.
Or is it something to do with /etc/hosts.equiv on his machine that has a line
like '+@cad_proj'?.
Please help.

Marin Purgar_4 · ‎02-19-2000

There is a very good discussion about host.quiv / .rlogin secutity mechanism
at:

http://docs.hp.com/dynaweb/hpux11/hpuxen1a/rvl3en1a/@Generic__BookTextView/11314
9

with the examples at:

http://docs.hp.com/dynaweb/hpux11/hpuxen1a/rvl3en1a/@Generic__BookTextView/11347
2

Anyway it is a good thing to tighten up security policies as much as you can.
So for example if you would like to allow access to user 'adam' from host
'cad_project' to the account 'root' at the server 'cad_server' what you do is
to put

cad_project adam

in the .rlogin file at the user 'root' home directory at the 'cad_server' host.

This way only the user 'adam' from the 'cad_project' host will be able to
execute 'rlogin cad_server -l root' withouth the password prompt.

For other users add more lines to .rhosts file, e.g.:

cad_project eve
cad_project1 eve
cad_project1 cain

Hope this helps, browsing rlogin and hostequiv docummentation will give you
more info.

bb4now,
PMC

Categories

Company

Local Language

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Discussions

Forums

Forums

Discussions

Forums

Discussions

Forums

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Community

Resources

Other HPE Sites

Discussions

Forums

Blogs

Prevent a user from accessing a server

Prevent a user from accessing a server

Re: Prevent a user from accessing a server