Hmm, I just considered that this is not at all a developpers question, so I may have sent it to the wrong list....
I'm sorry redhat guys, but your intentions may be noble, the implementation is ehrm... let's say 'difficult'. I'm not an inexperienced Unix user, but this PAM is costing me more time to figure out what the heck is going on with it than it's worth. I hope somebody can help me solve this trivial problem. I have two systems. One is IP masqueraded so not accessible from the internet anyways, so I want to enable root rlogin from my other system, I'd type 'rlogin lala -l root' and don't want to type in a password for it. So I understand that I have to look in /etc/pam.d/rlogin. I see a lot of lines in there and initially they make some sense to me. The first line that says 'auth required /lib/security/pam_securetty.so' is not required for me, unless I want to add a whole bunch of pty's to /etc/securetty, right? The second line 'auth sufficient /lib/security/pam_rhosts_auth.so' should 1) for root ignore the /etc/hosts.equiv 2) if root has own .rhosts, check if access is allowed. Fine, so I don't even have to add an /etc/hosts.equiv. and a /root/.rhosts with a line that says 'dutchie fredl' should be sufficient, am I correct? All the other lines about nologin.so, crack, shadow etc. are all great but not required for the purpose that I want IMHO. Okay, so I try it, and the syslog sayz: Mar 29 00:43:54 tracy pam_rhosts_auth[4671]: allowed to fredl@dutchie as root Cool! NOT! Immediately after, it says: Mar 29 00:43:54 tracy pam_rhosts_auth[4671]: PAM authentication failed for in.rlogind What's with this? I don't get it! I also tried it in combination with a first line 'auth required /lib/security/pam_rootok.so', tried HUP'ing the inetd, checked the tcp_wrapper config and all sorts of other desperate attempts, but I can't really get what I'm trying to do going. What am I doing wrong here? Regards, Fred Leeflang -- To unsubscribe: mail -s unsubscribe [EMAIL PROTECTED] < /dev/null
