Displaying /etc/issue file to every user at every login?
Jonathan Voigt
Todd Beurlihn wrote:
>
> I would like to change my /etc/issue file to display a security
> message to every user at every login. When I change the file to my new
> text, how do I make every account display it when they login? Also, if
> there are better ways to do this, please let me know. I am dabbling in
> unix admin at the moment and would appreciate any suggestions.
>
> -Todd B.
/etc/issue is what is displayed brfore the login.. ie..:
blah blah... Unix version etc...
login: _
/etc/motd will be shown to every user right after login.
Melvyn Burnard
the /etc/motd file and change those contents
Todd Beurlihn wrote:
> On Wed, 05 Jul 2000 13:49:12 GMT, Jonathan Voigt <jon....@home.com>
> wrote:
>
> >
> >
> >Todd Beurlihn wrote:
> >>
> >> I would like to change my /etc/issue file to display a security
> >> message to every user at every login. When I change the file to my new
> >> text, how do I make every account display it when they login? Also, if
> >> there are better ways to do this, please let me know. I am dabbling in
> >> unix admin at the moment and would appreciate any suggestions.
> >>
> >> -Todd B.
> >
> >/etc/issue is what is displayed brfore the login.. ie..:
> >
> >blah blah... Unix version etc...
> >
> >
> >login: _
> >
> >/etc/motd will be shown to every user right after login.
>
> Thanks for the reply, I will put the info in my MOTD file. Now, will
> I have to touch that file every day for it to display or does the date
> and time of its modification not matter? It seems like the MOTD would
> only display for THAT day. I want it to display to every user at every
> login every day. Thanks.
>
> -Todd B.
--
=============================================
Melvyn Burnard (melvyn_...@hp.com)
also (mel...@hpwind81.uksr.hp.com)
+++++++++++++++++++++++++++++++++++++++++++++
Want more??
go visit http://www.itrc.hp.com
********************************
Hewlett Packard Response Centre,
United Kingdom
+++++++++++++++++++++++++++++++++++++++++++++
My house is the bank's, my money the wife's,
But my opinions belong to me, not HP!
=============================================
Robert Gilster
UNIX methods. If they come in via the CDE or VUE (yuck) they may never
see the MOTD or /etc/issue. your question touches on some complicated
stuff that even a seasoned veteran would cringe at
Greg McLaughlin
when they login. You put in it whatever you want to show up when they
first login. Stands for "Message of the Day".
--
Garnet Health Systems Corp.
http://www.garnethealth.com
cLIeNUX user
>>>
>>> I would like to change my /etc/issue file to display a security
>>> message to every user at every login. When I change the file to my new
>>> text, how do I make every account display it when they login? Also, if
>>> there are better ways to do this, please let me know. I am dabbling in
>>> unix admin at the moment and would appreciate any suggestions.
>>>
>>> -Todd B.
>>
>>
>>blah blah... Unix version etc...
>>
>>
>>login: _
>>
>>/etc/motd will be shown to every user right after login.
>
>
> Thanks for the reply, I will put the info in my MOTD file. Now, will
>I have to touch that file every day for it to display or does the date
>and time of its modification not matter? It seems like the MOTD would
>login every day. Thanks.
Slackware Linux for example overwrites /etc/motd in it's init scripts.
You probably want something in cron.
Rick Hohensee
ri...@cLIeNUX.com
>
>-Todd B.
Steve Kuervers
what you want (it will show up instead of the blue copyright screen normally
seen briefly on login), however, it will be short and on newer machines
almost instantaneous.
I do use a script locally that displays a 'click me' screen if a user is
logging in as anyone other than our 'standard' end-user setup, but we are a
fairly specialized operation, and this may not apply to you. If you don't
mind adding a click to continue option, you can add a security message that
requires the user hit ok or cancel (which returns him to login) every time
they log in.
If there is interest, I will forward the script to the news group.
Steve Kuervers
Systems Engineer
Janus Simulation Centre
"Robert Gilster" <robert.l...@boeing.com> wrote in message
news:39634FEB...@boeing.com...
> MOTD is displayed at every login, assuming they login in via standard
> UNIX methods. If they come in via the CDE or VUE (yuck) they may never
> see the MOTD or /etc/issue. your question touches on some complicated
> stuff that even a seasoned veteran would cringe at
>
> Todd Beurlihn wrote:
> >
> > On Wed, 05 Jul 2000 13:49:12 GMT, Jonathan Voigt <jon....@home.com>
> > wrote:
> >
> > >
> > >
> > >Todd Beurlihn wrote:
> > >>
> > >> I would like to change my /etc/issue file to display a security
> > >> message to every user at every login. When I change the file to my
new
> > >> text, how do I make every account display it when they login? Also,
if
> > >> there are better ways to do this, please let me know. I am dabbling
in
> > >> unix admin at the moment and would appreciate any suggestions.
> > >>
> > >> -Todd B.
> > >
> > >/etc/issue is what is displayed brfore the login.. ie..:
> > >
> > >blah blah... Unix version etc...
> > >
> > >
> > >login: _
> > >
> > >/etc/motd will be shown to every user right after login.
> >
> > Thanks for the reply, I will put the info in my MOTD file. Now, will
> > I have to touch that file every day for it to display or does the date
> > and time of its modification not matter? It seems like the MOTD would
> > only display for THAT day. I want it to display to every user at every
> > login every day. Thanks.
> >
> > -Todd B.
unix...@home.com
wrote:
>
>
> I would like to change my /etc/issue file to display a security
>message to every user at every login. When I change the file to my new
>text, how do I make every account display it when they login? Also, if
>there are better ways to do this, please let me know. I am dabbling in
>unix admin at the moment and would appreciate any suggestions.
>
>-Todd B.
>
Let's do some Reverse-Engineering :) from one of the FAQs:
-------------------------------------------------------------------------------------------------------------
Subject: How do I prevent my machine from announcing OS version,
daemon version, etc in the banner message?
In unix, find the daemon in question, possibly by finding its line in
/etc/inetd.conf, and read its man page. For complex config files
(e.g. sendmail), search in the config file for the constant portions
of the string it's outputting (e.g. in sendmail.cf find the string
"Sendmail" with a capital 'S'). For telnetd, some systems have
"-h" to suppress the greeting and other systems' banners come from a
file called something like /etc/issue. (Note that in redhat linux,
you really want to modify /etc/rc.d/rc.local rather than (or in
addition to) /etc/issue*, because it regenerates /etc/issue* upon
boot.) For Solaris 2.6 and greater, put "BANNER=" (without the
quotes) in /etc/default/telnetd and/or /etc/default/ftpd. The
telnetd included with Solaris <2.6 and SunOS can't suppress the
banner, but there's no need to use that particular software; you could
use GNU telnetd or wu-ftpd, for example; or you might edit the
binary, as the strings appear in it.
But this might not really be a security issue and it might not be
worth your effort. Suppressing banners probably doesn't restrict any
information which is genuinely useful to an attacker. If an attacker
has some "exploit" program for sendmail 1.2.3 only, then rather than
checking the banner to see if your machine is in fact running
sendmail 1.2.3, they might as well just run the exploit program, which
is a direct check of whether you're vulnerable. Whereas the banner
suppression *will* interfere with some kinds of checking of
daemon versions which you yourself may want to do occasionally.
-------------------------------------------------------------------------------------------------------------
From my own experience (on Solaris 2.6/7):
1- /etc/default/telnetd will take only one line. However, within that
line you may call any system command i.e. Who are currently logged in
the system. You are limited as this file is being read by telnetd only
and will not display a lot of info unless you are send ls -laR /. :)
2-/etc/issue is file that will also display the info whatever it
contains. I am sure that it would be nice to put info not more that
one scree. If you want to clean the screen prior to display the
contents of this file that I will call `clear` from the
/etc/default/telnetd file and later display its contents. These
contents are displayed when some telnet to the system or logging into
locally from the console.
3-If you want to display the message while ftp the system then you
need different ftpd other than native one. But prior to installing the
new ftpd which are *very much* configureble, I will give a shot to
/etc/default/ftpd, just in case it may work.Wwith wu-ftpd, I did
configure the message which is being displayed on the top of directory
listings.
4- /etc/motd is static file and it should display the contents as long
as you do not modify it.
I hope that this will clear further about each file and its role.
Btw, no one mentioned /etc/default/telnetd file. I am wndering
why?
Direct Email: unixfirst `@` home.com
arr...@my-deja.com
If you also wish to display a message at the login pormpt, then you
must edit /etc/issue. By default, this will only display the message to
users logging in on directly attached terminals, but this can be
changed so that it displays the message to telnet users also.
To do this edit /etc/inetd.conf to change the line:
telnet stream tcp nowait root /usr/lbin/telnetd telnetd
to read
telnet stream tcp nowait root /usr/lbin/telnetd telnetd -b /etc/issue
Restart inetd (inetd -c) and your warning should be displayed to
network users as well at those on attached terminals.
'arry
Greg McLaughlin <gmcl...@garnethealth.com> wrote:
> /etc/motd is the file on many systems that displays a message for
users
> when they login. You put in it whatever you want to show up when they
> first login. Stands for "Message of the Day".
> --
> Garnet Health Systems Corp.
> http://www.garnethealth.com
>
> Todd Beurlihn wrote:
> >
> > I would like to change my /etc/issue file to display a security
> > message to every user at every login. When I change the file to my
new
> > text, how do I make every account display it when they login? Also,
if
> > there are better ways to do this, please let me know. I am dabbling
in
> > unix admin at the moment and would appreciate any suggestions.
> >
> > -Todd B.
>
Sent via Deja.com http://www.deja.com/
Before you buy.
Chris Harshman
login, xdm, etc). Figure out which 'login' files (/etc/profile,
/usr/X11R6/lib/X11/xinit/xinitrc, etc) get read by each of these methods.
Add a line that calls up the appropriate program for each (e.g., simply
"cat" the contents of /etc/motd or whatever for text-mode logins -- though,
if you're using /etc/motd this will be done automagically -- open up an
rxvt or xterm for GUI logins, etc). To be really thorough, link the FTP
message file (/home/ftp/welcome, or wherever your system has it) to the
/etc/motd file.
Chris
"Robert Gilster" <robert.l...@boeing.com> wrote in message
news:39634FEB...@boeing.com...
> MOTD is displayed at every login, assuming they login in via standard
> UNIX methods. If they come in via the CDE or VUE (yuck) they may never
> see the MOTD or /etc/issue. your question touches on some complicated
> stuff that even a seasoned veteran would cringe at
>
> Todd Beurlihn wrote:
> >
> > On Wed, 05 Jul 2000 13:49:12 GMT, Jonathan Voigt <jon....@home.com>
> > wrote: