diff options
author | nsayer <nsayer@FreeBSD.org> | 2000-05-13 15:58:36 +0000 |
---|---|---|
committer | nsayer <nsayer@FreeBSD.org> | 2000-05-13 15:58:36 +0000 |
commit | d83d7a65287240c9ca20b25c8e8c89fb48fe9b43 (patch) | |
tree | fe8c66b669c0f1d22631027b5629e5e6cc30b1b6 /libexec/rexecd/rexecd.8 | |
parent | 714d84ab03c8c8383adeeb9f52034dada073bd3b (diff) | |
download | FreeBSD-src-d83d7a65287240c9ca20b25c8e8c89fb48fe9b43.zip FreeBSD-src-d83d7a65287240c9ca20b25c8e8c89fb48fe9b43.tar.gz |
Add -i (insecure) flag to rexecd, which allows uid == 0 logins
(presuming that the user in question is not in /etc/ftpusers and
does not have a null password).
Diffstat (limited to 'libexec/rexecd/rexecd.8')
-rw-r--r-- | libexec/rexecd/rexecd.8 | 8 |
1 files changed, 5 insertions, 3 deletions
diff --git a/libexec/rexecd/rexecd.8 b/libexec/rexecd/rexecd.8 index 4c86268..b29f38e 100644 --- a/libexec/rexecd/rexecd.8 +++ b/libexec/rexecd/rexecd.8 @@ -39,7 +39,7 @@ .Nm rexecd .Nd remote execution server .Sh SYNOPSIS -.Nm rexecd +.Nm rexecd [-i] .Sh DESCRIPTION .Nm Rexecd is the server for the @@ -99,9 +99,11 @@ by .El .Sh CAVEATS .Nm Rexecd -will no longer allow root logins, access for users listed in +will not allow root logins unless the -i option is given on +the command line (typically in inetd.conf). It will also +disallow access for users listed in .Pa /etc/ftpusers , -or access for users with no passwords, which were all serious security holes. +or users with no passwords, which were all serious security holes. The entire concept of rexec/rexecd is a major security hole and an example of how not to do things. .Nm Rexecd |