AIX SSH 2.x ssh and /etc/ftpusers rcp rlogin WRONG !

["Petersen, Jörg"]

As far as I understand:
rlogind allows login with password
rshd only allows access via .rhosts/hosts.equiv ! (Which is easy to remove
;-)

The difference is the possible use of a password.

(If you say 'rsh foreignhost' without command,
you actually use rlogind !)

With the current openssh-Code I've got no possibility
to disallow any remote root-login with password while
allowing RSA-Authenticated SSH-Login to root.

Therefore I would prefer rlogin=false to be ignored by sshd too.

Jörg

-----Original Message-----
From: Gert Doering [mailto:gert at greenie.muc.de]
...
Sounds like a design deficiency in AIX, actually.  What good is
disallowing rlogin if you do not also disallow rsh?

I think ssh should be consistant here - either "permit remote access to
AIX box", or "not at all".
...