RLOGIN(1) UNIX Reference Manual RLOGIN(1)
rlogin - remote login
rlogin [-8EKLdx] [-e char] [-k realm] [-l username] host
Rlogin starts a terminal session on a remote host host.
Rlogin first attempts to use the Kerberos authorization mechanism, de-
scribed below. If the remote host does not supporting Kerberos the stan-
dard Berkeley rhosts authorization mechanism is used. The options are as
-8 The -8 option allows an eight-bit input data path at all times;
otherwise parity bits are stripped except when the remote side's
stop and start characters are other than ^S/^Q .
-E The -E option stops any character from being recognized as an es-
cape character. When used with the -8 option, this provides a com-
pletely transparent connection.
-K The -K option turns off all Kerberos authentication.
-L The -L option allows the rlogin session to be run in ``litout''
(see tty(4)) mode.
-d The -d option turns on socket debugging (see setsockopt(2)) on the
TCP sockets used for communication with the remote host.
-e The -e option allows user specification of the escape character,
which is ``~'' by default. This specification may be as a literal
character, or as an octal value in the form \nnn.
-k The option requests rlogin to obtain tickets for the remote host in
realm realm instead of the remote host's realm as determined by
-x The -x option turns on DES encryption for all data passed via the
rlogin session. This may impact response time and CPU utilization,
but provides increased security.
A line of the form ``<escape char>.'' disconnects from the remote host.
Similarly, the line ``<escape char>^Z'' will suspend the rlogin session,
and ``<escape char><delayed-suspend char>'' suspends the send portion of
the rlogin, but allows output from the remote system. By default, the
tilde (``~'') character is the escape character, and normally control-Y
(``^Y'') is the delayed-suspend character.
All echoing takes place at the remote site, so that (except for delays)
the rlogin is transparent. Flow control via ^S/^Q and flushing of input
and output on interrupts are handled properly.
Each user may have a private authorization list in the file .klogin in
their home directory. Each line in this file should contain a Kerberos
principal name of the form principal.instance@realm. If the originating
user is authenticated to one of the principals named in .klogin, access
is granted to the account. The principal accountname.@localrealm is
granted access if there is no .klogin file. Otherwise a login and pass-
word will be prompted for on the remote machine as in login(1). To avoid
certain security problems, the .klogin file must be owned by the remote
If Kerberos authentication fails, a warning message is printed and the
standard Berkeley rlogin is used instead.
The following environment variable is utilized by rlogin:
TERM Determines the user's terminal type.
rsh(1), kerberos(3), krb_sendauth(3), krb_realmofhost(3)
The rlogin command appeared in 4.2BSD.
Rlogin will be replaced by telnet(1) in the near future.
More of the environment should be propagated.
4.2 Berkeley Distribution July 27, 1991 1