SUMMARY: disabling r* commands

From: Jonathan Williams (jonathw@shubertorg.com)
Date: Thu Sep 26 2002 - 17:25:37 EDT

• Next message: Maglinger, Paul: "SUMMARY: Addendum: Reseting permissions of system files and direc tories."
• Previous message: Maglinger, Paul: "Addendum: Reseting permissions of system files and directories."
• In reply to: James W. Caldwell: "Fatal Error: Cannot map library"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Well...where do I begin?

first of all...if you do want to disable the r* commands, you would comment out
the lines in the /etc/inetd.conf file like I said in my original message. This
will block remote systems from gaining access to the local system through these
commands.
To disable the rlogin, etc commands from running locally...you would simply
change the permissions on the files (chmod 0700 /usr/bin/rlogin for example).

The funny thing is this: I didn't actually need to disable these commands. I
wanted them disabled because I had installed Ssh--and wanted people to use that
instead of the old r* commands. Little did I realize that this Ssh thing took
control of these programs and actually starts an ssh session when these programs
are called. Very clever.

It took some time to figure out why after disabling everything...I could STILL
rlogin to this system. thanks go out to Arrigo Triulzi, Simon Millard, Mahendra
Rajah and Ann Majeske.

Oh, and if anyone is interested...the version of Ssh I'm using, Ann Majeske
pointed out to me. It is for Tru64 5.1a or higher. Here is the link:
http://www.tru64unix.compaq.com/internet/download.htm#security

Jonathan Williams
Unix Systems Administrator
The Shubert Organization, Inc.

-----Original Message-----
Hi. I'm trying to disable the r commands (rlogin, rsh, rexec) on our Tru64 5.1
and 5.1a systems. I'm only doing testing with a 5.1a system. I searched around
and read that all I would need to do in order to disable these services is
comment out the appropriate lines in the /etc/inetd.conf file. So I commented
out these three lines:

shell stream tcp nowait root /usr/sbin/rshd rshd
login stream tcp nowait root /usr/sbin/rlogind rlogind
exec stream tcp nowait root /usr/sbin/rexecd rexecd

I restarted the inetd service...and then even rebooted the machine. But I'm
still able to use these commands successfully. Is what I read incorrect? Is
there a better way to disable these commands (or better yet...is there a way to
disable these commands?) I searched on the mailing list archives, and found a
bunch of people asking this same question, but I could not find the summaries of
these topics. Any help would be greatly appreciated. TIA

• Next message: Maglinger, Paul: "SUMMARY: Addendum: Reseting permissions of system files and direc tories."
• Previous message: Maglinger, Paul: "Addendum: Reseting permissions of system files and directories."
• In reply to: James W. Caldwell: "Fatal Error: Cannot map library"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:48:54 EDT