Login or Register to Ask a Question and Join Our Community

Linux and UNIX Man Pages

Linux & Unix Commands - Search Man Pages

pam_rhosts(8) [suse man page]

PAM_RHOSTS(8)							 Linux-PAM Manual						     PAM_RHOSTS(8)

NAME

       pam_rhosts - The rhosts PAM module

SYNOPSIS

       pam_rhosts.so

DESCRIPTION

       This module performs the standard network authentication for services, as used by traditional implementations of rlogin and rsh etc.

       The authentication mechanism of this module is based on the contents of two files; /etc/hosts.equiv (or and ~/.rhosts. Firstly, hosts
       listed in the former file are treated as equivalent to the localhost. Secondly, entries in the user's own copy of the latter file is used
       to map "remote-host remote-user" pairs to that user's account on the current host. Access is granted to the user if their host is present
       in /etc/hosts.equiv and their remote account is identical to their local one, or if their remote account has an entry in their personal
       configuration file.

       The module authenticates a remote user (internally specified by the item PAM_RUSER connecting from the remote host (internally specified by
       the item PAM_RHOST). Accordingly, for applications to be compatible this authentication module they must set these items prior to calling
       pam_authenticate(). The module is not capable of independently probing the network connection for such information.

OPTIONS

       debug
	   Print debug information.

       silent
	   Don't print informative messages.

       superuser=account
	   Handle account as root.

MODULE TYPES PROVIDED

       Only the auth module type is provided.

RETURN VALUES

       PAM_AUTH_ERR
	   The remote host, remote user name or the local user name couldn't be determined or access was denied by .rhosts file.

       PAM_USER_UNKNOWN
	   User is not known to system.

EXAMPLES

       To grant a remote user access by /etc/hosts.equiv or .rhosts for rsh add the following lines to /etc/pam.d/rsh:

	   #%PAM-1.0
	   #
	   auth     required	   pam_rhosts.so
	   auth     required	   pam_nologin.so
	   auth     required	   pam_env.so
	   auth     required	   pam_unix.so

SEE ALSO

       rootok(3), hosts.equiv(5), rhosts(5), pam.conf(5), pam.d(5), pam(8)

AUTHOR

       pam_rhosts was written by Thorsten Kukuk <kukuk@thkukuk.de>

Linux-PAM Manual						    04/01/2010							     PAM_RHOSTS(8)

Check Out this Related Man Page

rhosts(4)						     Kernel Interfaces Manual							 rhosts(4)

NAME

       rhosts, .rhosts - Specifies remote users that can use a local user account

SYNOPSIS

       $HOME/.rhosts

DESCRIPTION

       The .rhosts file contains a list of remote users who are not required to supply a login password when they execute the rcp, rlogin, and rsh
       commands using a local user account.

       The .rhosts file is a hidden file in your home directory.  It must be owned by you or the root user and it must not be writable by group or
       world,  otherwise, it is not used.  Moreover, although it is not required, it is sensible to set the permissions of the file to 600, so the
       file is not readable by group or world.

       Each entry in the file is of the following form: host [user]

       where: The name of the remote host. If the remote host is in a different domain than the local host, the full domain name  must	be  speci-
       fied.   The login name of the remote user. This field is optional. If this field is not specified, any user on the specified remote host is
       exempt from providing a password, and is assumed to have the same username on both the local and remote hosts.

       Optionally, an NIS netgroup name can be specified for the host name, user name, or both.

       Entries in the .rhosts file are either positive or negative. Positive entries allow access; negative entries  deny  access.  The  following
       entries are positive: hostname username +@netgroup

       In  addition,  the  plus  sign (+) can be used in place of the hostname or username. In place of the hostname, it means any remote host. In
       place of the username, it means any user.

       The following entries are negative: -hostname -username -@netgroup

EXAMPLES

       The following sample entries in the /u/chen/.rhosts file on host zeus allow users moshe and pierre at remote host venus and user robert	at
       the  hosts  specified  in the NIS netgroup chicago to log in to user chen's home directory on host zeus: venus moshe venus pierre +@chicago
       robert

FILES

       Specifies remote users who can use a local user account.

RELATED INFORMATION

       Commands:  rcp(1), rlogin(1), rsh(1).

       Functions: ruserok(3).

       Files: hosts.equiv(4), netgroup(4).

       Functions:  rcmd(3).  delim off

																	 rhosts(4)
Man Page