version 1, including all changes.
.
Rev |
Author |
# |
Line |
1 |
perry |
1 |
HOSTS.EQUIV |
|
|
2 |
!!!HOSTS.EQUIV |
|
|
3 |
NAME |
|
|
4 |
DESCRIPTION |
|
|
5 |
FILES |
|
|
6 |
NOTE |
|
|
7 |
SEE ALSO |
|
|
8 |
---- |
|
|
9 |
!!NAME |
|
|
10 |
|
|
|
11 |
|
|
|
12 |
/etc/hosts.equiv - list of hosts and users that are granted r__ command access to your system |
|
|
13 |
!!DESCRIPTION |
|
|
14 |
|
|
|
15 |
|
|
|
16 |
The __hosts.equiv__ file allows or denies hosts and users |
|
|
17 |
to use the __r__-commands (e.g. __rlogin__, __rsh__ |
|
|
18 |
or __rcp__) without supplying a password. |
|
|
19 |
|
|
|
20 |
|
|
|
21 |
The file uses the following format: |
|
|
22 |
|
|
|
23 |
|
|
|
24 |
''[[ + | - ] [[hostname] [[username]'' |
|
|
25 |
|
|
|
26 |
|
|
|
27 |
The ''hostname'' is the name of a host which is logically |
|
|
28 |
equivalent to the local host. Users logged into that hosts |
|
|
29 |
are allowed to access like-named user accounts on the local |
|
|
30 |
host without supplying a password. The ''hostname'' may |
|
|
31 |
be (optionally) preceded by a plus (+) sign. If the plus |
|
|
32 |
sign is used alone it allows any host to access your system. |
|
|
33 |
You can expicitly deny access to a host by preceding the |
|
|
34 |
''hostname'' by a minus (-) sign. Users from that host |
|
|
35 |
must always supply a password. For security reasons you |
|
|
36 |
should always use the FQDN of the hostname and not the short |
|
|
37 |
hostname. |
|
|
38 |
|
|
|
39 |
|
|
|
40 |
The ''username'' entry grants a specific user access to |
|
|
41 |
all user accounts (except root) without supplying a |
|
|
42 |
password. That means the user is NOT restricted to |
|
|
43 |
like-named accounts. The ''username'' may be (optionally) |
|
|
44 |
preceded by a plus (+) sign. You can also explicitly deny |
|
|
45 |
access to a specific user by preceding the ''username'' |
|
|
46 |
by a minus (-) sign. This says that the user is not trusted |
|
|
47 |
no matter what other entries for that host |
|
|
48 |
exist. |
|
|
49 |
|
|
|
50 |
|
|
|
51 |
Netgroups can be specified by preceding the netgroup by an @ |
|
|
52 |
sign. |
|
|
53 |
|
|
|
54 |
|
|
|
55 |
Be extremely careful when using the plus (+) sign. A simple |
|
|
56 |
typographical error could result in a standalone plus sign. |
|
|
57 |
A standalone plus sign is a wildcard character that means |
|
|
58 |
!!FILES |
|
|
59 |
|
|
|
60 |
|
|
|
61 |
/etc/hosts.equiv |
|
|
62 |
!!NOTE |
|
|
63 |
|
|
|
64 |
|
|
|
65 |
Some systems will only honor the contents of this file when |
|
|
66 |
it has owner root and no write permission for anybody else. |
|
|
67 |
Some exceptionally paranoid systems even require that there |
|
|
68 |
be no other hard links to the file. |
|
|
69 |
!!SEE ALSO |
|
|
70 |
|
|
|
71 |
|
|
|
72 |
rhosts(5), rshd(8), |
|
|
73 |
rlogind(8) |
|
|
74 |
---- |