TCLUG Archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [TCLUG:10372] telnet over network
On Mon, Nov 22, 1999 at 08:04:47PM -0600, Karl Morgan wrote:
> On Mon, 22 Nov 1999, Eric M. Hopper wrote:
> >
> > Then you'll be able to log in as root using any program that
> > uses 'login' to authenticate. I only know this because I had to set
> > up a pam entry for sshd. :-)
>
> I thought that was controlled in /etc/sshd_config
>
> PermitRootLogin [yes or no]
>
> I've never had to modify any of the pam files.
I wasn't able to login using OpenSSH at ALL until I edited a pam
file.
I didn't have any pam file for sshd, and so it used the default
one, which denies any attempt to authenticate, no matter what. I had to
add a pam file for sshd. I mostly just copied the login one, but not
before I read the manual and figured out what I was doing.
pam is neat, and a good way of configuring how authentication
works in various services. It's where the instructions to do the
securetty check are. Rather than giving your system a funny idea of
what secure ttys you have, you should just edit the pam file to make
that no longer be a requirement.
Have fun (if at all possible),
--
Its name is Public Opinion. It is held in reverence. It settles everything.
Some think it is the voice of God. Loyalty to petrified opinion never yet
broke a chain or freed a human soul. ---Mark Twain
-- Eric Hopper (hopper@omnifarious.mn.org
http://ehopper-host105.dsl.visi.com/~hopper) --
PGP signature