Bug 62713

Summary: pam and "+" wildcard (promiscuous)
Product: [Retired] Red Hat Linux Reporter: Michael Redinger <michael.redinger>
Component: pamAssignee: Tomas Mraz <tmraz>
Status: CLOSED CURRENTRELEASE QA Contact: Aaron Brown <abrown>
Severity: medium Docs Contact:
Priority: medium    
Version: 7.3   
Target Milestone: ---   
Target Release: ---   
Hardware: i386   
OS: Linux   
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2004-10-21 12:17:44 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Description Michael Redinger 2002-04-04 19:47:20 UTC
The "+" does not work in .rhosts files.

Normally you put smth. like this in .rhosts:

host	user

This works fine.

However, at least with other Unix systems, you can also use "+" to say "any user" or "any host".

From what I read in the man pages (and the PAM docs) this should also be available in Red Hat Linux - although you have to specify "promiscuous" for 
pam_rhosts_auth in /etc/pam.d/rsh.

However, this doesn't work at all for me.

The setup is quite simple: beta3, everything install. The only thing changed was that I turned on rsh and rlogin and added promiscuous to the PAM 
config file.

On the beta list, one person stated that he has heard of this problem, too while anotherone said it worked fine for him (in 7.2).

I'm seeing this problem both in skipjack and RHAT Linux 7.2.

The syslog entry is the same as if there was no corresponding .rhosts entry:

pam_rhosts_auth ... denied to ... as ...: access not allowed

Comment 1 Tomas Mraz 2004-10-21 12:17:44 UTC
It works fine in FC 2