hosts.equiv.4 (2010 09)
h
hosts.equiv(4) hosts.equiv(4)
name (only) must match the specified network group according to the
rules defined in netgroup (4) in order for the host name to match.
Similarly, if the user name in hostequiv is of this form, the remote user
name (only) must match the specified network group in order for the user
name to match.
-@netgroup_name netgroup_name is the name of a network group as defined in net-
group(4). If the host name in hostequiv is of this form, and if the remote
host name (only) matches the specified network group according to the
rules defined in netgroup (4), access is denied.
Similarly, if the user name in hostequiv is of this form, and if the remote
user name (only) matches the specified network group, access is denied.
Even if access is denied in this way by
/etc/hosts.equiv
, access can
still be allowed by
.rhosts.
EXAMPLES
1.
/etc/hosts.equiv
on hostA contains the line:
hostB
and /etc/hosts.equiv
on hostB is empty. User chm on hostB can use remsh to hostA,or
rlogin to account chm on hostA without being prompted for a password. chm will, however, be
prompted for a password with rlogin, or denied access with remsh, from hostA to hostB
.
If
.rhosts in the home directory of user chm on hostB contains:
hostA
or
hostA chm
then user chm can access hostB from hostA.
2.
hostA is in the domain arg.bob.com. hostB and hostC are in the domain oink.bob.com
.
.rhosts in the home directory of user chm on hostB contains:
hostC
hostA
User chm can access hostB from hostC, since hostC.oink.bob.com
matches hostC with
hostB’s local domain oink.bob.com appended. But user chm from hostA cannot access
hostB, since hostA.arg.bob.com
does not match hostA.oink.bob.com. In order for user
chm to be able to access hostB from hostA, chm’s .rhosts file on
hostB must contain:
hostA.arg.bob.com
since hostA is in a different domain.
3.
.rhosts in the home directory of user chm on hostA contains:
hostB root
/etc/hosts.equiv on hostB contains the line:
hostA
However, there is no file .rhosts in the home directory of user chm on hostB. The user root on
hostB can rlogin to account chm on hostA without being prompted for a password, but root
on hostA cannot rlogin to account chm on hostB.
4.
.rhosts in the home directory of user chm on hostA contains:
+
-hostB
+ root
User chm from any host is allowed to access account chm on hostA. User root from any host
except hostB can access account chm on hostA.
5.
/etc/hosts.equiv on hostA contains the lines:
2 Hewlett-Packard Company − 2 − HP-UX 11i Version 3: September 2010