NAME¶
telnetlogin —
login wrapper for
telnetd
SYNOPSIS¶
telnetlogin |
[-h
host]
[-p]
[username] |
DESCRIPTION¶
telnetlogin is a setuid wrapper that runs
login(1). It is meant to be invoked by
telnetd(8); the idea is to remove the necessity of running
telnetd as root.
telnetlogin should be installed mode 4750, user root, group
telnetd. Then, telnetd may be run from
/etc/inetd.conf as
user ``nobody'', group ``telnetd'', and with the option
-L
path-to-telnetlogin.
telnetlogin accepts only the subset of options to
login(1) shown above, in the order listed. This is the order
telnetd 8 normally provides them in.
telnetlogin also does sanity checks on the environment
variables
TERM
, and
REMOTEHOST
. It also insists that the standard input,
output, and error streams are open on a terminal, and that it is the process
group leader of the foreground process of that terminal. After checking all of
these conditions, checking the values of the above environment variables for
reasonable values, resetting signal handlers, and so forth, it execs login.
SEE ALSO¶
login(1),
inetd.conf(5),
inetd(8),
telnetd(8)
RESTRICTIONS¶
telnetlogin does not permit the
-f option to
login, so will not work with telnetds that perform authentication via Kerberos
or SSL.
THIS IS PRESENTLY EXPERIMENTAL CODE; USE WITH CAUTION.
HISTORY¶
telnetlogin was written during the development of NetKit
0.17.