11-12-2011
Hi,
how did you disable rlogin for root? According to IBM all you need to do to prevent root from direct login is to set rlogin to False in /etc/security/user
Regards
zxmaus
10 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
After Configuring a brand new netraT1, It appears, the only way you can log in as root is throught the Serial Port (console). I believe there is a file in /etc which can be edited to allow root to access login via other methods
eg: telnet, ssh, etc.
My Question:
Which file contains... (2 Replies)
Discussion started by: SmartJuniorUnix
2 Replies
2. AIX
Hello!
I'm going through security checklist for AIX 5.3 and i just can't disable remote login for root through ssh.
What i did:
- in /etc/security/user i added a line:
rlogin = false
which works fine when i try to login through telnet
- after installation of openSSH i edited... (3 Replies)
Discussion started by: veccinho
3 Replies
3. UNIX for Dummies Questions & Answers
I am able to disable direct root login through telnet. But when I add the rlogin = false into the /etc/security/user file. I am unable to log in as root from ssh. I uncommented the "PermitRootLogin yes" in the sshd_config file. Still can't log in. Can anyone help? (0 Replies)
Discussion started by: james0125
0 Replies
4. UNIX for Dummies Questions & Answers
Hi All,
I have setup a non root user on AIX 5.3, using smit. When I try logging on as that user my login screen just disappears. I am using PUTTY. I login to the same box as root no problems. I have tried re-creating several different usernames but get the same effect I have also telneted from a... (2 Replies)
Discussion started by: hansul
2 Replies
5. Linux
Hi Guys....
I am a newbie to unix. I have a requirement. I have a server. I have to configure ssh to disable direct root login and then add a user with sudo access to this server.Then change the ssh port to 22315 and the server should permit the ssh only from my local machine ip.I also have to... (1 Reply)
Discussion started by: mahesh_raghu
1 Replies
6. UNIX for Dummies Questions & Answers
I have already disabled root login over the ssh by modifying /etc/ssh/sshd_config.
But how would i disable root login on a server itself.
We have implemented LDAP in our environment and our security guide states that root login must be obtained by first logging into the host using his/her own... (2 Replies)
Discussion started by: pinga123
2 Replies
7. Solaris
Hi,
I am trying to setup direct login from server test1 (Solaris 10) to server test2 (Solaris 9) using id taops (ldap id).
Process Followed on Test 2.
created .rhosts file in home directory of user taops
geneted public key on test1 and appended to authorized keys on test2.
Now trying... (8 Replies)
Discussion started by: tuxian
8 Replies
8. Solaris
Hi all,
how can I disable direct login to a Solaris system not only for root user but also for other accounts?
Looking in google I came to the following:
For telnet (/etc/default/login):
disable root access> CONSOLE=/dev/console
disable generic user> ?
For ssh... (5 Replies)
Discussion started by: Evan
5 Replies
9. AIX
Hello,
I would like to confirm whether the below procedure is correct.
disabled direct super user access on AIX server using below procedure. Please let me know if there is any additional step.
1) confirm the access to HMC, console to reach the LPARs
2) chuser rlogin=false root
... (3 Replies)
Discussion started by: dio34
3 Replies
10. UNIX for Beginners Questions & Answers
Hello. I recently upgraded to a new Power 8 server and running AIX 7.1.
I migrated from an IBM P520 and AIX 5.5.
My application on the P520 works best if I direct print, it doesn't work well with spooling. My IBM rep set up the new Power 8 server with spooling which is causing an issue.... (4 Replies)
Discussion started by: ldavis1080
4 Replies
LEARN ABOUT REDHAT
console.perms
console.perms(5) System Administrator's Manual console.perms(5)
NAME
console.perms - permissions control file for users at the system console
DESCRIPTION
/etc/security/console.perms determines the permissions that will be given to priviledged users of the console at login time, and the per-
missions to which to revert when the users log out. It is read by the pam_console module.
The format is:
<class>=space-separated list of words
login-regexp|<login-class> perm dev-glob|<dev-class>
revert-mode revert-owner[.revert-group]
The revert-mode, revert-owner, and revert-group fields are optional, and default to 0600, root, and root, respectively.
The words in a class definition are evaluated as globs if they refer to files, but as regular expressions if they apply to a console defi-
nition. Do not mix them.
Any line can be broken and continued on the next line by using a character as the last character on the line.
The login-class class and the login-regexp word are evaluated as regular expressions. The dev-class and the dev-glob word are evaluated as
shell-style globs. If a name given corresponds to a directory, and if it is a mount point listed in /etc/fstab, the device node associated
with the filesystem mounted at that point will be substituted in its place.
Classes are denoted by being contained in < angle bracket > characters; a lack of < angle brackets > indicates that the string is to be
taken literally as a login-regexp or a dev-glob, depending on its input position.
SEE ALSO
pam_console(8)
pam_console_apply(8)
console.apps(5)
AUTHOR
Michael K. Johnson <johnsonm@redhat.com>
Red Hat Software 1999/2/3 console.perms(5)