How to get rid of Kerberos telnetd on Fedora 3
Richard E. Silverman
res at qoxp.net
Tue Apr 18 05:21:53 EDT 2006
>>>>> "EG" == Earl Greida <eGREGIOUSgrieda at FREEyahoo.commie> writes:
EG> "Richard E. Silverman" <res at qoxp.net> wrote in message
EG> news:m2mzejsia5.fsf at darwin.oankali.net...
>> >>>>> "EG" == Earl Greida <eGREGIOUSgrieda at FREEyahoo.commie>
>> writes:
>>
EG> FTP is fine.
>>
EG> The comment in the krb5-telnet file states that "The kerberized
EG> telnet server accepts normal sessions", but that appears false.
>> No, it is true. In prompting for a password, it is doing a
>> "normal session," as opposed to requiring authentication via
>> Kerberos ticket. The problem is that telnetd is further configured
>> to verify the password using Kerberos. That is probably via PAM;
>> look at /etc/pam.conf or in /etc/pam.d/.
EG> Thanks for the help. There is no /etc/pam.conf file. There are a
EG> ton of files in pam.d, but none contain telnet. Any suggestions?
EG> I am a bit hesitant to just going into these files and commenting
EG> out lines.
Although the names often match up, they don't have to. In this case,
telnetd is probably using the "login" PAM service.
--
Richard Silverman
res at qoxp.net
More information about the Kerberos
mailing list