[330] in RedHat Linux List
Re: HOSTS.EQUIV "behavior" (Colgate)???
daemon@ATHENA.MIT.EDU (Lawrence Houston)
Tue Oct 22 01:25:09 1996
Date: Tue, 22 Oct 1996 01:21:52 -0400 (EDT)
From: Lawrence Houston <houston@boyd.geog.mcgill.ca>
To: "Michael K. Johnson" <redhat.com!johnsonm@felix.geog.mcgill.ca>
cc: redhat.com!redhat-list@felix.geog.mcgill.ca
In-Reply-To: <199610212217.SAA02551@tristan.redhat.com>
Resent-From: redhat-list@redhat.com
Reply-To: redhat-list@redhat.com
On Mon, 21 Oct 1996, Michael K. Johnson wrote:
> Lawrence Houston writes:
> >Colgate is behaving "strangely" when a non-empty HOST.EQUIV File (to
> >permit "trusted" hosts the use of "R" Commands without requiring a
> >password) is used. With the named Hosts "R" Commands are working as
> >expected, but there is a problem with those Hosts NOT appearing in
> >HOST.EQUIV! The wtmp entries reflect the last entry in HOSTS.EQUIV rather
> >than the actual remote hostname (as displayed with commands such as "w",
> >"who" & "last")! This makes security monitoring impossible without
> >manually checking "/var/log/secure" for the IP Addresses (who's numerical
> >values are actually correct)??? Since I can NOT continue with the wtmp
> >being this "incorrect", HOSTS.EQUIV will be disabled until a solution can
> >be found!
>
> I can't reproduce this behavior. In every instance which I have tried,
> I get the correct host. I've tried from several different hosts from
> the middle of my hosts.equiv file, and each time I found that the
> correct hostname was logged.
Michael:
The wtmp entries are correct for all hosts appearing in the HOSTS.EQUIV
File, problem is ONLY with those hosts NOT appearing in HOSTS.EQUIV!
Further testing reveals the last hostname in the HOSTS.EQUIV File is ONLY
being incorrectly picked up if RLOGIN is used (ie. a Telnet Session from
hosts NOT in HOSTS.EQUIV will infact have correct wtmp Entries)? Were you
using Telnet or RLOGIN during your own tests?
Lawrence Houston - (houston@boyd.geog.mcgill.ca)
--
PLEASE read the Red Hat FAQ, Tips, HOWTO and the MAILING LIST ARCHIVES!
________________________________________________________________________
http://www.redhat.com/RedHat-FAQ http://www.redhat.com/RedHat-HOWTO
http://www.redhat.com/RedHat-Tips http://www.redhat.com/mailing-lists
------------------------------------------------------------------------
To unsubscribe: mail -s unsubscribe redhat-list-request@redhat.com < /dev/null
