Re: rlogin = true for root

From: Ian Northeast (ian_at_house-from-hell.demon.co.uk)
Date: 10/22/03

• Next message: Scott Wilson: "Re: I need help on formatting a file for my Unix class!!"
• Previous message: Alex007: "Re: system hacked, need help"
• In reply to: Sherman H.: "rlogin = true for root"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Wed, 22 Oct 2003 20:38:04 +0100

"Sherman H." wrote:
>
> I am reviewing AIX security and noted root account's rlogin was set to true
> in the passwd file. Does this have any security exposures? Is the root
> password encrypted when it is transmitted from a remote site? Would it be
> better to use su instead of root for remote login? Thanks.

The worst thing about that particular setting is accountability not
security. You can't tell who is logging in as root. It's fairly unusual
in modern systems to have so lax a default but this is AIX. IBM seem to
value compatibility with ancient versions higher than security. They
still ship sendmail configured as an open relay too:)

If you set it to false, and telnet in as another user then su, the root
password still goes over the network unencrypted. But you know who's
using root.

The most secure way is to:

Disable telnet and rsh completely and only allow ssh. Then everything
gets encrypted. Get the latest ssh from IBM, the one on the CD is
unsafe. IBM only produce ssh for 4.3.3 and 5.x (the currently supported
versions). If you have an earlier version you have to build it yourself;
Do not allow ssh as root. This is in the sshd configuration not the
account. Then you have accountability too.

Note to non-AIXers - the "rlogin=true" setting doesn't just control the
r* commands. It also controls whether root (or indeed any user it is
applied to) can log in with telnet.

Regards, Ian

• Next message: Scott Wilson: "Re: I need help on formatting a file for my Unix class!!"
• Previous message: Alex007: "Re: system hacked, need help"
• In reply to: Sherman H.: "rlogin = true for root"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: Enabling telnet, ftp, pop3 for root... ... passwords - the root and the user password. ... excuse your 'security' by obscurity. ... On my system, someone coming in on ssh, if they even get that far, ... It's easy to forge hostnames in a local network, ... (alt.os.linux) RE: Linux hacked ... Subject: Linux hacked ... After you boot up into the OS running from CD, ... >> First let me say I'm a security novice. ... >> been unsuccessful in getting root back. ... (Security-Basics) Re: ssh ... So you have a user named Michael, say, and you su to root, but when you ssh ... But the same effect can be achieved by specifying the identity file: ... If it's not actually a bug, but a security concern, then it ... (freebsd-questions) Re: Linux hacked ... is to boot your system with a separate ... You can't trust the logs, ... >> First let me say I'm a security novice. ... >> been unsuccessful in getting root back. ... (Security-Basics) RE: Linux hacked ... Also, what exactly did the history file show, can you paste it into a mail ... > First let me say I'm a security novice. ... > been unsuccessful in getting root back. ... > via ssh but you could su in once logged in as one of three users. ... (Security-Basics)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint