Path: utzoo!attcan!utgpu!jarvis.csri.toronto.edu!mailrus!cs.utexas.edu!uunet!mcsun!unido!tub!coma!reiner
From: reiner@coma.UUCP (Reiner Petersen)
Newsgroups: comp.unix.i386
Subject: Re: Logging in to 386/ix via telnet over, TCP/IP
Keywords: login fails, rlogin, ftp, etc.
Message-ID: <430@coma.UUCP>
Date: 5 Oct 89 12:06:30 GMT
References: <2316@uceng.UC.EDU>
Reply-To: reiner@coma.UUCP (Reiner Petersen)
Organization: Technical University of Berlin, Germany (West)
Lines: 22

In article <2316@uceng.UC.EDU> dmocsny@uceng.UC.EDU (daniel mocsny) writes:
	>Though I can telnet to the very ends of the earth, the ends of the
	>earth cannot telnet back to me. My machine hastens to answer the
	>distant calls with login: and password: prompts, but though remoteuser
	>types them with the diligence of the most faithful scribe, my machine
	>can only rasp the reply "login incorrect".

Since 386/ix Version 2.0 crypted passwords are moved into an extra file,
named /etc/shadow, which is readable only by root. The /etc/passwd file
now contains only an `x' in its password column.

The TELNET protocol server (telnetd) seems to use /etc/netlogin when
creating a login process, which has never heard of /etc/shadow. I solved
that problem by copying the password column from /etc/shadow into
/etc/passwd. Telnet works fine since then, but the security improvement
is gone, it's a lot of unnecessary work and password changes must be
maintained by hand. Therefore this is not an optimal solution. Any hints?
-- 
Reiner Petersen, TU-Berlin	BITNET: reiner at db0tui62  
				UUCP:	reiner@coma
				path:	...!pyramid!tub!coma!reiner (overseas)
					...!unido!coma!reiner	    (Europe)