ssh looks at rlogin=false only at startup

mark.pitt at ch.ibm.com mark.pitt at ch.ibm.com
Tue May 22 16:52:29 EST 2001




Very early on in what seems to be quite a hot debate sometimes, I pointed
out that sshd only controls rlogin=false at its startup, and if it is
changed, sshd simply ignores it ie:

chuser rlogin=true root
sshd
chuser rlogin=false root

Will result in sshd ACCEPTING login from root, ie it seems to only check at
its startup - is this a bit like ulimit behavior where you need need to log
out and in to get it to accept the new ulimit ?  The other way around works
too.

I could use this to start sshd up with rlogin=true, ie ssh allows access
for root, then set it to false to stop access via telnetd and rlogind.

Question: Is this behaviour reliable ?

It does seem to me not correct that it only checks rlogin on its startup,
but that said, in this case I can use it if it is lasting feature.

Mark.









More information about the openssh-unix-dev mailing list