Topic: /etc/securetty

[Scott Smith]

I have e-smith 4.0 configured to allow local telnet and ftp access. When I login I get the following in /var/log/messages:

Oct 10 14:39:19 mailsv01 PAM-securetty[8079]: Couldn't open /etc/securetty

Anyone know why this is?

[Charlie Brady]

Scott Smith wrote:

> I have e-smith 4.0 configured to allow local telnet and ftp
> access. When I login I get the following in /var/log/messages:
>
> Oct 10 14:39:19 mailsv01 PAM-securetty[8079]: Couldn't open
> /etc/securetty
>
> Anyone know why this is?

Yes, that's because the PAM configuration for telnet requires a check that the root login via telnet is happening on a secure tty - that is, a physically connected one. That check is disabled in e-smith by removing the /etc/securetty file - a nicer way to do it would be to generate /etc/pam.d/telnet from a template and remove the check the "correct" way.

I'll add it to the TODO list - in the meantime you can ignore it.

Regards

Charlie