Summary: Lost access to server after running CIS hardening script

From: sunhux G (sunhux@gmail.com)
Date: Mon Apr 07 2008 - 00:29:44 EDT

• Next message: Gary Gatling: "GNOME Network Monitor 2.7.1 weirdness"
• Previous message: Mouaz Alnouri: "luxadm utility"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Thanks to Francisco for chipping in & thanks to
Musa for spotting the right answer

problem is the following 2 lines in /etc/pam.conf
must not be removed/commented out :

  rlogin auth sufficient pam_rhosts_auth.so.1
  rsh auth sufficient pam_rhosts_auth.so.1

Looks like we can't follow wholesale what's given
by the CIS (Centre for Internet Security) :
  cd /etc
  grep -v rhosts_auth pam.conf > pam.conf.new
  mv pam.conf.new pam.conf
  pkgchk -f -n -p /etc/pam.conf

Rgds
Goh
_______________________________________________
sunmanagers mailing list
sunmanagers@sunmanagers.org
http://www.sunmanagers.org/mailman/listinfo/sunmanagers

• Next message: Gary Gatling: "GNOME Network Monitor 2.7.1 weirdness"
• Previous message: Mouaz Alnouri: "luxadm utility"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Wed Apr 09 2008 - 23:42:54 EDT