rsh commands to 5.1-CURRENT being rejected
supraexpress at globaleyes.net
supraexpress at globaleyes.net
Sun Sep 14 16:30:25 PDT 2003
Sep 14 17:46:52 <local7.notice> target logger: TCP_Wrappers ALLOW: source/target,rshd,974,rshd at target
Sep 14 17:46:52 <auth.info> target inetd[974]: connection from source, service rshd (tcp)
Sep 14 17:46:52 <auth.info> target rshd[974]: root at source as root: permission denied (authentication error). cmd='date'
/root/.rhosts (600): "source root"
/etc/pam.d/rsh: not changed
/etc/inetd.conf:
shell stream tcp nowait root /usr/libexec/rshd rshd -L
/etc/hosts: both "source" and "target" are defined
/etc/named/s/: both "source" and "target" are defined
5.1-CURRENT: Wednesday, 20 August 2003 20:36:05
Under FBSD-4.8, this is not a problem. Under FBSD-5.1, nothing I do
seems to allow rsh from another LAN host.
A TCPDUMP of the rsh session shows "root.root.<command>" coming from
"source" and then "permission denied" coming from "target", where the
TCPDUMP is running. The "source" host displays: "rshd: Login
incorrect.". RSH from "target" to "source" works just fine?!?
More information about the freebsd-current
mailing list