本文介绍了如何在Linux系统中设置默认启动级别为5,启用图形界面,并配置XDMCP允许Root用户通过Xmanager进行远程连接。详细步骤包括修改/etc/inittab、添加启动指令、调整安全配置等,确保Root用户的远程登录安全。
Enable=true
DisplaysPerHost=10
Port=177
在/etc/inittab裡把默认级别改為5:
id:5:initdefault:
再在这个文件裡加一句:
x:5:respawn:/etc/X11/prefdm -nodaemon
然后重啟系统。然后在windows系统上运行xmanager2裡的Xbrowser程序,在裡面新建一个Xmanager Session,在Host这裡输入ip地址,其它配置都不要改变(包括端口号),确定退出。然后双击这个New Xmanager Session,看到登录界面:
二、 如果允许Root用户连接到XMANAGER 需要修改以下内容:
# vi defaults.conf
[security]
# Allow root to login. It makes sense to turn this off for kiosk use, when
# you want to minimize the possibility of break in.
AllowRoot=true
# Allow login as root via XDMCP. This value will be overridden and set to
# false if the /etc/default/login file exists and contains
# "CONSOLE=/dev/login", and set to true if the /etc/default/login file exists
# and contains any other value or no value for CONSOLE.
AllowRemoteRoot=true
# This will allow remote timed login.
AllowRemoteAutoLogin=false
# 0 is the most restrictive, 1 allo
#vi /etc/securetty
......
tty2
tty3
tty4
tty5
tty6
tty7
tty8
tty9
tty10
tty11
pts/0
pts/1
pts/2
pts/3
pts/4
添加这一些。
# vi /etc/pam.d/login
#%PAM-1.0
#auth [user_unknown=ignore success=ok ignore=ignore default=bad] pam_securetty.so
auth include system-auth
account required pam_nologin.so
account include system-auth
password include system-auth
# pam_selinux.so close should be the first session rule
session required pam_selinux.so close
session include system-auth
session required pam_loginuid.so
session optional pam_console.so
# pam_selinux.so open should only be followed by sessions to be executed in the user context
session required pam_selinux.so open
session optional pam_keyinit.so force revoke
~
#vi /etc/pam.d/remote
#%PAM-1.0
#auth required pam_securetty.so
auth include system-auth
account required pam_nologin.so
account include system-auth
password include system-auth
# pam_selinux.so close should be the first session rule
session required pam_selinux.so close
session include system-auth
session required pam_loginuid.so
session optional pam_console.so
# pam_selinux.so open should only be followed by sessions to be executed in the user context
session required pam_selinux.so open
session optional pam_keyinit.so force revoke
~
~
#vi /etc/xinetd.d/telnet
# default: on
# description: The telnet server serves telnet sessions; it uses
# unencrypted username/password pairs for authentication.
service telnet
{
flags = REUSE
socket_type = stream
wait = no
user = root
server = /usr/sbin/in.telnetd
log_on_failure += USERID
disable = no
}
~
扫一扫
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
