Re: How to enable .rhost + + on REDHAT
- From: ibuprofin@xxxxxxxxxxxxxxxxxxxxxx (Moe Trin)
- Date: Sat, 17 Nov 2007 13:27:27 -0600
On Sat, 17 Nov 2007, in the Usenet newsgroup linux.redhat, in article
<d5230cb6-6806-4080-affa-cc312af63ff7@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>,
greatfighter74@xxxxxxxxxxx wrote:
NOTE: Posting from groups.google.com (or some web-forums) dramatically
reduces the chance of your post being seen. Find a real news server.
I can not enable .rhost and + + setting on my REDHAT Enterprise 4.
If put user name exactly, that will work but + + does not work.
What happens when you try?
Looks like this is for security reason
Yes - that is disabling all security on that service, which if there
is a shell escape mechanism would be an exploit so simple any child
could take over the system in seconds.
but for now I need to put + + to it
(since the application here need to have it).
I'd be smacking the application author upside the head with an axe,
and telling him to fix his code. That lack of security is appalling.
Anybody know how to disable the security function?
Depends on how it's failing - that might be a PAM configuration, or it
might be something in the server application.
Old guy
.
- References:
- How to enable .rhost + + on REDHAT
- From: greatfighter74
- How to enable .rhost + + on REDHAT
- Prev by Date: how do i...
- Next by Date: Re: how do i...
- Previous by thread: How to enable .rhost + + on REDHAT
- Next by thread: how do i...
- Index(es):
Relevant Pages
|
