Having a problem with root being able to rlogin to another server without asking for a passwd. One Server is a V class with 11.0 HP/UX and the other is a K580 with 10.20. All the .rhosts and hosts.equiv files have been configured. When one rlogins from the 10.20 Server it works fine. When you rlogin from the 11.0 Server to the 10.20 Server it asks for a passwd. Any suggestions. Purpose is to only allow root to use rlogin to certain Servers and domains without prompting for a password. No other login accouts will be allowed to do so.
Does the .rhost have the host information of all interface cards? Sometimes with multiple interface cards the connection does not go through the one you think it will. A quick way of determining what IP address the rlogin is coming from is to turn on inetd logging (inetd -l) then review /var/adm/syslog/syslog.log
1./etc/hosts.equiv doesn't count for root. .rhost should be under root home directory (so, if / is root home directory, /.rhosts if you have /home/root or whatever other location for it, please put .rhosts in that place. 2. is remsh command working? What shell do you use for root? 3. having .rhosts under root's home directory, try for a few minutes to edit it with + +. Try to login. Is it working? 4. Remove + + from .rhosts. Try to edit it with a regular user. Is it the same problem? Come back with details
telnet from one box to the other and issue #who -Rm >> how is the hostname returned, fully qualified or shortname? This is the way it must be in the .rhosts file. Check both this way.
I believe Berlene has you on the right track. The .rhosts entry must match what the local system resolves teh remote contact to (IP, short name, fully.qualified.name).
Make sure you have the correct one (or specify all 3).
Yeah, I think that Alan is right... you might want to check the /etc/nsswitch.conf on your HPUX 11.0 box and ... if relies only on the /etc/hosts file to resolve addresses, that could be cause this problem (if the 10.20 box is not defined in there).
nothing wrong with me that a few lines of code cannot fix!
I rlogin from 10.2 to 11 ( and back ) all the time with no problems. Double check your /rhost file, does it show + root. And make sure your inetd.sec gives you rlogin capability. Just a thought,
