Very Computer

        I have a sparc classic with solaris.  How can I enable
        root rsh from other machines?

        I've tried .rhost and hosts.equiv.  I can rsh to other
        sparc2's.

        Sometimes it says "not on console Connection closed"
        and other times just "Connection closed".

--
        Alan Yasutovich
        "inquiring  (and nosey) minds WANT TO KNOW!!!"
        I can remember when "safe sex" meant having a padded headboard!!
        Tick Tock.....Tick Tock......Tick Tock .....Tick Tock......

:       I have a sparc classic with solaris.  How can I enable
:       root rsh from other machines?

:       I've tried .rhost and hosts.equiv.  I can rsh to other
:       sparc2's.

:       Sometimes it says "not on console Connection closed"
:       and other times just "Connection closed".

The "not on system console" message probably indicates that the system
you are trying to log into as root doesn't trust root logins from network
terminals.  This is controlled in various files on different unix systems
(/etc/ttys, /etc/ttydefs, or /etc/ttytab).  I think the ttytab file is
one of the more popular places for it.  A look into the ttytab file on
one of our SUN4.1.1 systems shows that we only trust console root logins.
Of course that doesn't stop me from logging in under my regular account
and the doing an su.

Here's a couple of lines from the file.  Note that the keyword secure
appears in the line for the console but not for the network lines.
To enable network root logins, we would have to add the "secure" keyword
to the end of the line for the ttyp* entries.

====

#
# name  getty                           type            status  comments
#
console "/usr/etc/getty std.9600"       sun             on local secure
ttya    "/usr/etc/getty std.9600"       unknown         off local
ttyb    "/usr/etc/getty std.9600"       unknown         off local
tty00   "/usr/etc/getty std.9600"       unknown         off local
tty01   "/usr/etc/getty std.9600"       unknown         off local
# Lots-o-lines removed for brevity.
ttyp0   none                            network         off
ttyp1   none                            network         off
ttyp2   none                            network         off
# More lines deleted.

Hope that helps.

--

Specifically, on Solaris systems, you want to look in /etc/default/login,
particularly at the CONSOLE line.  Commenting it out altogether will
allow root logins from any tty/pty, or you can specify an exhaustive
list of all the terminals you wish to allow root logins from.

--
+----------------------------------------------------------------+

|   CS Solaris Systems Support Group, Iowa State University      |
+----------------------------------------------------------------+

Wolfgang

"The question  of whether a computer can  think  is no more interesting
than the question of whether a submarine can swim" (Edsgar W. Dijkstra)

--
+----------------------------------------------------------------------
| Mike Andrews                                                        |


|--------------------------------+------------------------------------+
| Mgr., Tech. Support            |   (405) 521-4197 (my desk)         |
| Data Services Division         |   0730-1630 Central (U.S.)         |
| Okla. Dept. of Transportation  |   (405) 521-4195 (help desk)       |
| 200 N. E. 21st. St.            |   0700-1700 Central (U.S.)         |
| Okla. City, OK 73105           |                                    |
+--------------------------------+------------------------------------+

Wolfgang

"UNIX was not designed to stop you from doing stupid things,  because
that would  also stop you from doing clever things."     -- Doug Gwyn

Quote:>    I have a sparc classic with solaris.  How can I enable
>    root rsh from other machines?
>    I've tried .rhost and hosts.equiv.  I can rsh to other
>    sparc2's.
>    Sometimes it says "not on console Connection closed"
>    and other times just "Connection closed".

--

Manager - Tech Support
(314) 340-0602

->Naw, you just have to edit /etc/default/login and comment out the
->CONSOLE line (or add the ptys from which you wish to allow root login).
->(for Solaris, that is.  I don't know about Clix).

No, you should probably leave CONSOLE alone.  Try commenting out
ROOTCONSOLE instead.  Works for us here at MTI....
--


Silicon Graphics, Inc.          Tel (415)390-4120       Fax (415)390-6174
"Comparing Dos to UNIX is like comparing a mix-master to a chef's kitchen"

Manager - Technical Support
(314) 340-0602

Quote:>->>It soulds as though this particular solaris is like Clix on
>->>our Intergraph workstations: if you want to log in as root,
>->>you _MUST_ log in through the console. Period.
>->Naw, you just have to edit /etc/default/login and comment out the
>->CONSOLE line (or add the ptys from which you wish to allow root login).
>->(for Solaris, that is.  I don't know about Clix).
>No, you should probably leave CONSOLE alone.  Try commenting out
>ROOTCONSOLE instead.  Works for us here at MTI....

From the Solaris 2.3 login(1) man page:

DIAGNOSTICS
     Login incorrect     The user name or the password cannot  be
                         matched.

     Not on system console
                         Root login denied.   Check  the  CONSOLE
                         setting in /etc/default/login.

The question was, after all, specifically Solaris.  I don't think
ROOTCONSOLE is a regular SVR4 thing, but I could be wrong.

Followups redirected to comp.unix.admin.
--
+----------------------------------------------------------------+

|   CS Solaris Systems Support Group, Iowa State University      |
+----------------------------------------------------------------+