telnet: DISallow root access
Hi there.
I have a problem with a LFS (Linux From Scratch) system i recently set up. If I use telnet to log on over network, I can do that as root. I have already tried to change the /etc/securetty and to comment out ALL entries but I can still login as root on every terminal. Are there some telnet daemons which use other config files? I know that telnet is unsecure but I can't replace it by ssh for the moment. |
hmmm...I always thought root login was disable by default on telnet. What does your /etc/pam.d/login file look like?
|
Well, you won't believe it, but that hint solved the problem. There was a comment before a line which referred to pam_securetty.so. I checked it out and found that the library was missing (I didn't set up this system in the first place but I actually have to maintain it... :-(
I also thought that PAM wasn't responsible for telnet logins because I got some PAM messages in the syslog output on FTP logins but not on telnet. Now I know better... Finally, all I had to do was to restore the library and remove the comment. Now it works fine! |
All times are GMT -5. The time now is 04:39 AM. |