version 1, including all changes.
.
| Rev |
Author |
# |
Line |
| 1 |
perry |
1 |
HOSTS.EQUIV |
| |
|
2 |
!!!HOSTS.EQUIV |
| |
|
3 |
NAME |
| |
|
4 |
DESCRIPTION |
| |
|
5 |
FILES |
| |
|
6 |
NOTE |
| |
|
7 |
SEE ALSO |
| |
|
8 |
---- |
| |
|
9 |
!!NAME |
| |
|
10 |
|
| |
|
11 |
|
| |
|
12 |
/etc/hosts.equiv - list of hosts and users that are granted r__ command access to your system |
| |
|
13 |
!!DESCRIPTION |
| |
|
14 |
|
| |
|
15 |
|
| |
|
16 |
The __hosts.equiv__ file allows or denies hosts and users |
| |
|
17 |
to use the __r__-commands (e.g. __rlogin__, __rsh__ |
| |
|
18 |
or __rcp__) without supplying a password. |
| |
|
19 |
|
| |
|
20 |
|
| |
|
21 |
The file uses the following format: |
| |
|
22 |
|
| |
|
23 |
|
| |
|
24 |
''[[ + | - ] [[hostname] [[username]'' |
| |
|
25 |
|
| |
|
26 |
|
| |
|
27 |
The ''hostname'' is the name of a host which is logically |
| |
|
28 |
equivalent to the local host. Users logged into that hosts |
| |
|
29 |
are allowed to access like-named user accounts on the local |
| |
|
30 |
host without supplying a password. The ''hostname'' may |
| |
|
31 |
be (optionally) preceded by a plus (+) sign. If the plus |
| |
|
32 |
sign is used alone it allows any host to access your system. |
| |
|
33 |
You can expicitly deny access to a host by preceding the |
| |
|
34 |
''hostname'' by a minus (-) sign. Users from that host |
| |
|
35 |
must always supply a password. For security reasons you |
| |
|
36 |
should always use the FQDN of the hostname and not the short |
| |
|
37 |
hostname. |
| |
|
38 |
|
| |
|
39 |
|
| |
|
40 |
The ''username'' entry grants a specific user access to |
| |
|
41 |
all user accounts (except root) without supplying a |
| |
|
42 |
password. That means the user is NOT restricted to |
| |
|
43 |
like-named accounts. The ''username'' may be (optionally) |
| |
|
44 |
preceded by a plus (+) sign. You can also explicitly deny |
| |
|
45 |
access to a specific user by preceding the ''username'' |
| |
|
46 |
by a minus (-) sign. This says that the user is not trusted |
| |
|
47 |
no matter what other entries for that host |
| |
|
48 |
exist. |
| |
|
49 |
|
| |
|
50 |
|
| |
|
51 |
Netgroups can be specified by preceding the netgroup by an @ |
| |
|
52 |
sign. |
| |
|
53 |
|
| |
|
54 |
|
| |
|
55 |
Be extremely careful when using the plus (+) sign. A simple |
| |
|
56 |
typographical error could result in a standalone plus sign. |
| |
|
57 |
A standalone plus sign is a wildcard character that means |
| |
|
58 |
!!FILES |
| |
|
59 |
|
| |
|
60 |
|
| |
|
61 |
/etc/hosts.equiv |
| |
|
62 |
!!NOTE |
| |
|
63 |
|
| |
|
64 |
|
| |
|
65 |
Some systems will only honor the contents of this file when |
| |
|
66 |
it has owner root and no write permission for anybody else. |
| |
|
67 |
Some exceptionally paranoid systems even require that there |
| |
|
68 |
be no other hard links to the file. |
| |
|
69 |
!!SEE ALSO |
| |
|
70 |
|
| |
|
71 |
|
| |
|
72 |
rhosts(5), rshd(8), |
| |
|
73 |
rlogind(8) |
| |
|
74 |
---- |
