From owner-freebsd-current Mon Jan 3 21:57:41 2000 Delivered-To: freebsd-current@freebsd.org Received: from lor.watermarkgroup.com (lor.watermarkgroup.com [207.202.73.33]) by hub.freebsd.org (Postfix) with ESMTP id 1485814CDE; Mon, 3 Jan 2000 21:57:38 -0800 (PST) (envelope-from luoqi@watermarkgroup.com) Received: (from luoqi@localhost) by lor.watermarkgroup.com (8.8.8/8.8.8) id AAA07921; Tue, 4 Jan 2000 00:57:36 -0500 (EST) (envelope-from luoqi) Date: Tue, 4 Jan 2000 00:57:36 -0500 (EST) From: Luoqi Chen Message-Id: <200001040557.AAA07921@lor.watermarkgroup.com> To: freebsd-current@FreeBSD.ORG, ust@cert.siemens.de Subject: Re: Problem with rlogin and /etc/pam.conf Cc: markm@FreeBSD.ORG, mharo@FreeBSD.ORG Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG > Hi all, > > on two 4.0-CURRENT boxes (cvsuped today) I got the following response when > trying to rlogin to it: > > # rlogin indiana > assword: > > A typed-in password is echoed in cleartext. > > The only thing that helps is to comment out the second-last line in > /etc/pam.conf: > > # other auth required pam_unix.so try_first_pass > > But this gives an error message when first using the login at the console. > > Any help on this? Did I miss something? > My work around to this problem is to add the following line to /etc/pam.conf, rshd auth sufficient pam_deny.so We probably should change the last two default entries to use the pam_deny module, pam_unix requires stdin/out/err/ctty, which may not be present in all cases. -lq To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message