[22] in bugtraq
Re: r commands
daemon@ATHENA.MIT.EDU (Perry E. Metzger)
Tue Oct 18 11:23:13 1994
To: aleph1@dfw.net (Aleph One)
Cc: bugtraq@crimelab.com
In-Reply-To: Your message of "Mon, 17 Oct 1994 17:57:49 CDT."
<9410172257.AA15020@dfw.net>
Reply-To: perry@imsi.com
Date: Tue, 18 Oct 1994 09:01:02 -0400
From: "Perry E. Metzger" <perry@imsi.com>
Aleph One says:
> Well guess i'll just pitch in my two cents in. If you dont allow
> users to set up their own .rhosts files, or you dissable them
> compleately. Then you loose what makes the r commands so wanted
> by people.... transparency. They like them because they dont have
> to type a user name and passwd to log into other machines. Now if
> this dissapears then rlogin is a beefed up telnet.
And at that point, you install the kerberos suite and they can use
rlogin if they are kinited and then you have security again.
Perry
