Date: Fri, 10 Mar 2000 13:09:40 -0700 From: Chris Fedde <chris@fedde.littleton.co.us> To: Paul Orr <Paul.Orr@jetsam.com> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: rhosts mask really makes a difference? Message-ID: <200003102009.e2AK9em75462@fedde.littleton.co.us> In-Reply-To: Your message of "Fri, 10 Mar 2000 11:27:53 PST." <200003101927.LAA41201@jetsam.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Paul Orr writes: +--------------- | | Why is it that (under 3.4 at least) if your .rhosts file protection | is 664 you are unable to rlogin without a password? | | Some sort of funky security measure? | | Paul Orr +--------------- Yup! the issue is the write bit on group. As bad as security in rsh is, it is still a good idea to minimize the impact of the transitive property of trust. Unfortunately iruserok(3) still does not check that the path to .rhosts can be trusted. chris __ Chris Fedde <chris@fedde.littleton.co.us> 303 773 9134 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200003102009.e2AK9em75462>