Add -i (insecure) flag to rexecd, which allows uid == 0 logins

(presuming that the user in question is not in /etc/ftpusers and
does not have a null password).

1 files changed, 5 insertions, 3 deletions

diff --git a/libexec/rexecd/rexecd.8 b/libexec/rexecd/rexecd.8
index 4c86268..b29f38e 100644
--- a/libexec/rexecd/rexecd.8
+++ b/libexec/rexecd/rexecd.8
@@ -39,7 +39,7 @@
 .Nm rexecd
 .Nd remote execution server
 .Sh SYNOPSIS
-.Nm rexecd
+.Nm rexecd [-i]
 .Sh DESCRIPTION
 .Nm Rexecd
 is the server for the 
@@ -99,9 +99,11 @@ by
 .El
 .Sh CAVEATS
 .Nm Rexecd
-will no longer allow root logins, access for users listed in
+will not allow root logins unless the -i option is given on
+the command line (typically in inetd.conf). It will also
+disallow access for users listed in
 .Pa /etc/ftpusers ,
-or access for users with no passwords, which were all serious security holes.
+or users with no passwords, which were all serious security holes.
 The entire concept of rexec/rexecd is a major security hole and an example
 of how not to do things.
 .Nm Rexecd