From owner-freebsd-security  Fri Jul 18 08:40:46 1997
Return-Path: <owner-security>
Received: (from root@localhost)
          by hub.freebsd.org (8.8.5/8.8.5) id IAA28628
          for security-outgoing; Fri, 18 Jul 1997 08:40:46 -0700 (PDT)
Received: from itsdsv1.enc.edu (itsdsv1.enc.edu [207.95.42.241])
          by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id IAA28623
          for <freebsd-security@freebsd.org>; Fri, 18 Jul 1997 08:40:43 -0700 (PDT)
Received: from localhost (owensc@localhost) by itsdsv1.enc.edu (8.7.5/8.7.3) with SMTP id LAA27887 for <freebsd-security@freebsd.org>; Fri, 18 Jul 1997 11:35:49 -0400 (EDT)
Date: Fri, 18 Jul 1997 09:20:46 -0400 (EDT)
From: Charles Owens <owensc@enc.edu>
To: questions list FreeBSD <freebsd-questions@freebsd.org>
Subject: how to make -K the default for su and 'r' tools?
Message-ID: <Pine.FBS.3.93.970718090959.26066B-100000@itsdsv1.enc.edu>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
ReSent-Date: Fri, 18 Jul 1997 11:35:24 -0400 (EDT)
ReSent-From: Charles Owens <owensc@enc.edu>
ReSent-To: freebsd-security@freebsd.org
ReSent-Message-ID: <Pine.FBS.3.93.970718113524.26066I@itsdsv1.enc.edu>
Sender: owner-security@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk

Folks,

In 2.1.7 on (maybe 2.1.6 also?) the 'r' (rlogin, rsh, etc.) commands seem
to always want to attempt some sort of Kerberos interaction even though
I've not set Kerberos up.  Su and rlogin produce annoying warning
messages.   Rsh hangs.  For all of these commands, the '-K' flag will
disable all Kerberos authentification attempts, but how may I make this
the default?

Some programs I rely on make calls to rsh, and, since the program doesn't
know to include the -K flag, this problem cause the whole shebang to hang.
Yes, I could hack code and recompile, but this seems a bit messy.  A
system-wide no-Kerberos-at-all setting somewhere would be much preferred.

FYI, I'm using 2.2-970618-RELENG, trying rsh to other 2.2-970618-RELENG
boxes and a 2.1.5-something box as well.

Thanks,
---
-------------------------------------------------------------------------
  Charles Owens					 Email:  owensc@enc.edu
                                       "I read somewhere to learn is to
  Information Technology Services     remember... and I've learned that
  Eastern Nazarene College            we've all forgot..."   - King's X
-------------------------------------------------------------------------