[2478] in RedHat Linux List
Re: HOSTS.EQUIV "behavior" (Colgate)???
daemon@ATHENA.MIT.EDU (Lawrence Houston)
Sun Nov 3 17:33:30 1996
Date: Sun, 3 Nov 1996 17:26:10 -0500 (EST)
From: Lawrence Houston <houston@boyd.geog.mcgill.ca>
To: "Michael K. Johnson" <redhat.com!johnsonm@felix.geog.mcgill.ca>
cc: redhat.com!redhat-list@felix.geog.mcgill.ca
In-Reply-To: <199611011435.JAA26919@tristan.redhat.com>
Resent-From: redhat-list@redhat.com
Reply-To: redhat-list@redhat.com
On Fri, 1 Nov 1996, Michael K. Johnson wrote:
> >This evening had some strange behavior with the same Colgate Host and was
> >wondering if you might have any explainations? For several hours this
> >evening we were without Internet Connectivity past the regional level,
> >which for some reason caused RLOGIN Connections to HANG part way through
> >the login process (Telnet/FTP were uneffected)!
>
> Sounds like it was waiting for a nameserver; rlogind (actually
> pam_rhost, but without pam, rlogind does this) does reverse name
> lookups for EACH host in the hosts.equiv file.
>
> >Could there be any requirement for Full Internet Connectivity leading to
> >the Rlogin Daemon experiencing such a HANGING problem (PAM or something
> >else which has changed since Picasso)?
>
> You need a nameserver which can resolve reverse lookups of the host you
> are connecting from.
How can one determine if one's Namserver(s) can perform thr type of
"reverse lookup" required by PAM?
Had one occurence today where the Colgate Host did NOT request a password
while I was using RLOGIN from a Host NOT appearing in the HOSTS.EQUIV
File! Immediately logged out and logged back in and the second time it
DID ask for a password (which is NOT very consistent)? Can NOT remember
having noticed an absence of a password prompt before, although on
occasion there have been noticable delays before RLOGIN continues.
Gaining access without a password from a Host NOT appearing in the
HOSTS.EQUIV File weakens Systems Security!!!!!
Lawrence Houston - (houston@boyd.geog.mcgill.ca)
--
PLEASE read the Red Hat FAQ, Tips, Errata and the MAILING LIST ARCHIVES!
________________________________________________________________________
http://www.redhat.com/RedHat-FAQ http://www.redhat.com/RedHat-Errata
http://www.redhat.com/RedHat-Tips http://www.redhat.com/mailing-lists
------------------------------------------------------------------------
To unsubscribe: mail -s unsubscribe redhat-list-request@redhat.com < /dev/null
