1830165 Members
6022 Online
109999 Solutions
New Discussion

securetty question

 
Jun Zhang_4
Regular Advisor

securetty question

I have a redhat box running 2.4.9-e25. I can telnet in as root, tty shows /dev/pts/2. There is no entry start like pts in the /etc/securetty file. How can it happen?

Jun
Food lover
3 REPLIES 3
Kodjo Agbenu
Honored Contributor

Re: securetty question

Hi Jun,

If you are sure that your /etc/securetty is in place (no mistake in the file name ;-), you may check the PAM configuration.

PAM is a set of security modules that are configured to make some system authentication steps modular (login, telnet, ssh...).

In /etc/pam.d/login, check the configuration for "login" related security. Mine (redhat 9) looks like this :

auth required pam_securetty.so
auth required pam_stack.so service=system-auth
auth required pam_nologin.so
account required pam_stack.so service=system-auth
password required pam_stack.so service=system-auth
session required pam_stack.so service=system-auth
session optional pam_console.so


Good luck.

Kodjo
Learn and explain...
Jun Zhang_4
Regular Advisor

Re: securetty question

Thanks for the reply. Your pam.d/login file is the same like mine.
I have another 2.4.18-24.8.0 RH, it has the same pam.d/rsh and pam.d/login files like the 2.4.9-e25 RH, but I've got to remove the /etc/securetty file before root can telnet in. I'm very much confused.

Jun
Food lover
Stuart Browne
Honored Contributor

Re: securetty question

Normally it would be the pam.d configuration.

If it isn't, check for the bare-word 'telnet' in the securetty file, and make sure that it doesn't have world-wirteable permissions (i.e. only 644 (-rw-r--r--)).
One long-haired git at your service...