Date: Thu, 03 May 2001 12:48:31 +0000 From: Nick Barnes <Nick.Barnes@pobox.com> To: freebsd-questions@freebsd.org Subject: Re: telnet sometimes gets "SRA secure login" prompt?? Message-ID: <76630.988894111@thrush.ravenbrook.com> In-Reply-To: Message from Nick Sayer <nsayer@talarian.com> of "Wed, 02 May 2001 11:34:51 MST." <3AF0534B.FBD68B81@talarian.com>
next in thread | previous in thread | raw e-mail | index | archive | help
[moving over from the -stable list, since this isn't really a question about -stable any more]. At 2001-05-02 18:34:51+0000, Nick Sayer writes: > Gavin Atkinson wrote: > > > On Wed, 2 May 2001, Gregory Neil Shapiro wrote: > > > > > Using "-a off" won't help. Use: > > > > > > telnet stream tcp nowait root /usr/libexec/telnetd telnetd -a off -X sra > > > telnet stream tcp6 nowait root /usr/libexec/telnetd telnetd -a off -X sra > > > > Ah - that explains it... Though to be honest, I was more worried as to why > > an out-of-the-box install of 4.3-RELEASE withg crypto installed would > > allow telnet in as root - and no, my ttys are not marked as secure. > > It's a bug. No one has reported it before. Now that I'm aware of it, I'll see what I can do. > > Once upon a time, I worked out PAM support for SRA. Perhaps this might be a good reason to > revisit that (Mark?). > > I am also surprised that '-a off' is insufficient for telnetd. I will see about looking into > that too. Is there any kind of intro documentation to these various authentication facilities? man -k SRA didn't tell me anything, and man telnet and telnetd don't mention SRA. Various manual pages wibble on about "authentication types", "authentication mechanisms", and so on, without having a useful "SEE ALSO" reference to actually tell me what it is or how to manage it. There's nothing visible about it in the handbook. The closest thing I can find is the security(7) manpage. Nick B To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?76630.988894111>