Koozali.org: home of the SME Server

Legacy Forums => General Discussion (Legacy) => Topic started by: Scott Smith on October 12, 2000, 01:13:26 AM

Title: /etc/securetty
Post by: Scott Smith on October 12, 2000, 01:13:26 AM: I have e-smith 4.0 configured to allow local telnet and ftp access. When I login I get the following in /var/log/messages:

Oct 10 14:39:19 mailsv01 PAM-securetty[8079]: Couldn't open /etc/securetty

Anyone know why this is?
Title: RE: /etc/securetty
Post by: Charlie Brady on October 12, 2000, 01:23:38 AM: Scott Smith wrote:

> I have e-smith 4.0 configured to allow local telnet and ftp
> access. When I login I get the following in /var/log/messages:
>
> Oct 10 14:39:19 mailsv01 PAM-securetty[8079]: Couldn't open
> /etc/securetty
>
> Anyone know why this is?

Yes, that's because the PAM configuration for telnet requires a check that the root login via telnet is happening on a secure tty - that is, a physically connected one. That check is disabled in e-smith by removing the /etc/securetty file - a nicer way to do it would be to generate /etc/pam.d/telnet from a template and remove the check the "correct" way.

I'll add it to the TODO list - in the meantime you can ignore it.

Regards

Charlie

SMF 2.0.19 | SMF © 2021, Simple Machines
Privacy Policy | Terms and Policies