[NCLUG] Debian 3.1 and rsh/rlogin

Dave Treece davet at frii.com
Tue Mar 22 18:41:54 MST 2005 

Well,

   I had to add pam_securetty.so to the pam.d/rsh and that got me to where I
can at least remsh/rsh into the box and run commands, login still asks for a
password though, I guess I can at least work with that.

  Securety is nice, but it sure makes it tough to do things without
passwords these days. There's got to be a nice medium for a network of
systems isolated from the rest of the world.

-----Original Message-----
From: nclug-bounces at nclug.org [mailto:nclug-bounces at nclug.org]On Behalf
Of Mike Loseke
Sent: Tuesday, March 22, 2005 1:58 PM
To: Northern Colorado Linux Users Group
Subject: Re: [NCLUG] Debian 3.1 and rsh/rlogin



 The "+ user" syntax has proven to be not entirely reliable across
architectures and version lifespans, so much so that we don't even use it
here or rely on it ever working outside of NIS environments. You do need
to populate the hosts.equiv file with your hostnames, possibly with both
short and long hostnames, in order for the simple rsh/rlogin commands to
work.

 We run this across Solaris, HP-UX and RHEL Linux and rsh is happy enough.

Thus spake Bob Proulx:
> Dave Treece wrote:
>> I don't want to get into any arguments of why we shouldn't use
>> rsh/rlogin,
>> I know all those reasons, but, suffice it to say we have enough older
>> systems that its required at this point to maintain integration.
>
> What I do and recommend is to replace the useless /usr/bin/rsh
> (restricted posix shell) with a symlink to ssh.  (Manpage too.)  Then
> scripts that use rsh get ssh by default.  This is also true on Debian
> systems if rsh-client is not installed as the Debian alternatives will
> revert the symlink to ssh in that case too.  In this way changes to
> scripts that use "rsh" are not needed but they are transparently
> converted to using ssh.
>
>> We are installing a Debian 3.1 machine into a cluster of HP-UX systems.
>> We
>> move applications/users around these systems frequently and we use
>> rlogin/remsh/rsh commands extensively. In particular we have one user
>> that
>> each of these applications rsh to. Now, on the HP systems the rhosts
>> contains "+ user". It appears that the debian machine doesn't like,
>> doesn't
>> acknowledge the "+ user" format. So, how can I get Debian to like it.
>
> Looks like a bug to me.  I filed it as Bug#300687 in the BTS.
> Hopefully it is just something in the PAM configuration that can be
> changed.
>
> Bob
> _______________________________________________
> NCLUG mailing list       NCLUG at nclug.org
>
> To unsubscribe, subscribe, or modify
> your settings, go to:
> http://www.nclug.org/mailman/listinfo/nclug
>


_______________________________________________
NCLUG mailing list       NCLUG at nclug.org

To unsubscribe, subscribe, or modify
your settings, go to:
http://www.nclug.org/mailman/listinfo/nclug

More information about the NCLUG mailing list