[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-users] rsh to a RaQ4i

Subject: RE: [cobalt-users] rsh to a RaQ4i
From: Víctor Villar <victor@xxxxxxxxxxxxxxxxx>
Date: Thu Aug 22 14:23:50 2002
List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>

Yes ok, I know the security problem with r-commands, but we have configured
the Firewall to prevent anti-spoofing and the port for r-commands is not
accesible from the out-side world, only from the private LAN

And I need the rsh command :)

Victor.

-----Mensaje original-----
De: Tim Dunn [mailto:tdunn@xxxxxxxxxxxxxxxxxxx]
Enviado el: jueves, 22 de agosto de 2002 17:28
Para: cobalt-users@xxxxxxxxxxxxxxx
Asunto: Re: [cobalt-users] rsh to a RaQ4i


> 	I configure a user to accept rsh from another Linux and Unix
> machine.

You don't.  Berkley r-commands (rexec, rsh, rcp and rlogin) have
security problems.  They don't exchange passwords, but instead 
rely on the connection comming from a known IP address on a 
privileged port.  This is relativly easy for a hacker to spoof. 

Use ssh instead.

tim

-- 
	"There are 10 types of people in this world: people who can
	 understand binary, and people who can't." -- my boss

_____________________________________
cobalt-users mailing list
cobalt-users@xxxxxxxxxxxxxxx
To subscribe/unsubscribe, or to SEARCH THE ARCHIVES, go to:
http://list.cobalt.com/mailman/listinfo/cobalt-users

Prev by Date: RE: [cobalt-users] raq backup - 2 gig file size limit ??
Next by Date: RE: [cobalt-users] RaQ4r File Upload via CGI
Previous by thread: Re: [cobalt-users] rsh to a RaQ4i
Next by thread: [cobalt-users] (raq3) Adding innodb support to mysql 3.23.37 pkg

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index