using the packages from http://sf.net/projects/openssh-aix have set a user 'appa' to be rlogin=false in /etc/security/users when I 'ssh appa@gromit': appa@gromit's password: Received disconnect from 158.234.7.207: 2: Remote login for account appa is not allowed. when i 'scp *.txt appa@gromit:~': appa@gromit's password: Received disconnect from 158.234.7.207: 2: Remote login for account appa is not allowed. lost connection so all good so far, but when I 'sftp appa@gromit': Connecting to gromit... appa@gromit's password: sftp> i am allowed to log in!!!!! this happens only on AIX5.3. On AIX5.2 (same user setup) I get: Connecting to fenris... appa@fenris's password: Permission denied, please try again.
(In reply to comment #0) > using the packages from http://sf.net/projects/openssh-aix We can't help you, you'll have to follow this up with them. Last time I checked those packages a) contained modifications b) to which there's no source and c) are version 4.1p1 (not 4.3p1, which is what this bug is against). If you are able to reproduce this with the vanilla source from openssh.com then we may be able to help you (but the rlogin check is in allowed_user() which is always called, so I doubt you'll see it).
*** Bug 1227 has been marked as a duplicate of this bug. ***
One other thing: the disconnect message if charateristic of what PAM sends so you may be seeing a difference between AIX 5.2 and 5.3 because of the UsePAM setting in sshd_config and/or the sshd PAM configuration. Anyway, as I said we are not able to help you with anyone else's binaries so I'm closing this bug. Please feel free to reopen if you can reproduce it with the software from openssh.com.
Change all RESOLVED bug to CLOSED with the exception of the ones fixed post-4.4.