Summary: Lost access to server after running CIS hardening script

From: sunhux G <sunhux_at_gmail.com>
Date: Mon Apr 07 2008 - 00:29:44 EDT
Thanks to Francisco for chipping in & thanks to
Musa for spotting the right answer

problem is the following 2 lines in /etc/pam.conf
must not be removed/commented out :

  rlogin        auth sufficient         pam_rhosts_auth.so.1
  rsh    auth sufficient         pam_rhosts_auth.so.1


Looks like we can't follow wholesale what's given
by the CIS (Centre for Internet Security) :
  cd /etc
  grep -v rhosts_auth pam.conf > pam.conf.new
  mv pam.conf.new pam.conf
  pkgchk -f -n -p /etc/pam.conf


Rgds
Goh
_______________________________________________
sunmanagers mailing list
sunmanagers@sunmanagers.org
http://www.sunmanagers.org/mailman/listinfo/sunmanagers
Received on Mon Apr 7 00:30:22 2008

This archive was generated by hypermail 2.1.8 : Thu Mar 03 2016 - 06:44:10 EST