About user equivalence
User equivalence allows a user to use
rlogin(1tcp)
to log in to an equivalent account on another host without entering
a password. SCOadmin managers require this equivalence to allow
you to manage other systems over the network using the
Open Host selection. You can
establish user equivalence between:
-
individual remote/local account pairs by using the
Accounts Manager
to alter a user's $HOME/.rhosts file to add the
remote host and account
-
a remote account and all local accounts except root (and
other non-individual accounts such as bin), by
editing /etc/hosts.equiv to add the remote host and account
-
all accounts on a remote host and all local accounts except
root (and other non-individual accounts)
by editing /etc/hosts.equiv to add only the remote host name
NOTE:
Entries in /etc/hosts.equiv can create large holes in system
security. Be sparing in their use. In most circumstances,
it is unwise to create entries that allow all users on remote
hosts to access all accounts on your local host.
Configuring the files manually allows you to set equivalence between
accounts with different logins. The simplest option is to use
accounts with the same name as described in
``Setting remote access for a user''.
If there are entries in both .rhosts and /etc/hosts.equiv
for the same host or host/account combination,
the entry from /etc/hosts.equiv
determines the extent of user equivalence. For more information, see
rhosts(4tcp).
Next topic:
Changing user login shells
Previous topic:
Setting remote access for a user
© 2004 The SCO Group, Inc. All rights reserved.
UnixWare 7 Release 7.1.4 - 22 April 2004