path: root/modules/pam_rhosts/README
diff options
authorAndrew G. Morgan <>2000-06-20 22:10:38 +0000
committerAndrew G. Morgan <>2000-06-20 22:10:38 +0000
commitea488580c42e8918445a945484de3c8a5addc761 (patch)
treec992f3ba699caafedfadc16af38e6359c3c24698 /modules/pam_rhosts/README
Initial revision
Diffstat (limited to 'modules/pam_rhosts/README')
1 files changed, 57 insertions, 0 deletions
diff --git a/modules/pam_rhosts/README b/modules/pam_rhosts/README
new file mode 100644
index 00000000..527dfd38
--- /dev/null
+++ b/modules/pam_rhosts/README
@@ -0,0 +1,57 @@
+arguments recognized:
+.rhosts/hosts.equiv format:
+There are positive entries, when one is matched authentication
+succeeds and terminates. There are negative entries, when one is
+matched authentication fails and terminates. Thus order is
+Entry hosts.equiv .rhosts
+<host> All users on <host> are ok Same username from <host> is ok
+<host> <user> <user> from <host> is ok ditto
+-<host> No users from <host> are ok ditto
+<host> -<user> <user> from <host> is not ok ditto
+<host> can be ip (IPv4) numbers.
+Netgroups may be used in either host or user fields, and then applies
+to all hosts, or users, in the netgroup. The syntax is
+ +@<ng>
+The entries
+ <host> +@<ng>
+ +@<ng> +@<ng>
+ +@<ng> <user>
+means exactly what you think it does. Negative entries are of the
+ -@<ng>
+When the "promiscuous" option is given the special character + may be
+used as a wildcard in any field.
+ + Allow anyone from any host to connect. DANGEROUS.
+ + + Ditto.
+ + <user> Allow the user to connect from anywhere. DANGEROUS.
+ <host> + Allow any user from the host. Dangerous.
+These, perhaps more usefull, forms of the + form is also disallowed
+unless "promiscuous" is specified:
+ + -<user> Disallow the user from any host
+ + -@<ng> Disallow all members of the netgroup from any host
+When "promiscuous" is not specified a '+' is handled as a negative