Thread: r-commands
View Single Post

   
  #3 (permalink)  
Old 01-04-2008, 08:30 PM
kannix
 
Posts: n/a
Default Re: r-commands
Sherman H. wrote:

> Is any way to check if r-commands are used in the AIX? We are trying to
> create a rule to stop using r-commands for security reasons. Will this be
> worthwhile?
>
>
there are a few ways.

- remove all the rexec ... entrys from /etc/inetd.conf (incomming requests)

- put an empty .rhosts (only root-changabe) into every users
homedirectory (I wouldn't do that)

- remove the x-bits from /usr/bin/rexec, rsh, rcp, ... (outgoing use).



you might want to have a look at

http://ist.uwaterloo.ca/security/howto/2001-01-15/

and

http://www.rootvg.net/count.php?url=...et/ssec.tar.gz

hth

kannix

--
----------------------------------------------------------------------------------------------------------------------
to reach me by mail, pls. remove "_usenet" from my adress. - kannix

Reply With Quote