topic telnet in a script in Operating System - HP-UX

telnet in a script

Pippo_9 — Tue, 09 Mar 2004 05:04:01 GMT

Hello,

is it possible to create a script with telnet included and bypass the password request?
Have you ever created a similar script? Have you experiencies about this?

Thanks in advance for your helps!

Kind regards,
Pedro

Re: telnet in a script

David Burgess — Tue, 09 Mar 2004 05:15:22 GMT

Pedro,

Take a look at the man page for remsh. With the use of /.rhosts or /etc/hosts.equiv you can log in and run remote commands without the need for a password.

To do this as root, on the server (server1) add .rhosts with an entry like

client1 root

Permissions should be r only for root so

chmod 400 /.rhosts

On client1

#remsh server1 -l root -n "ls -l /.rhosts"

-r-------- 1 root sys 42 Mar 5 16:45 /.rhosts

Regards,

Dave.

Re: telnet in a script

Sanjay Kumar Suri — Tue, 09 Mar 2004 05:15:49 GMT

Not sure about telnet.

However commands starting with letter r (rlogin, rcp, remsh) can be used on a network using /etc/hosts.equiv or .rhosts file.

There are security issues which need to looked into before doing this.

sks

Re: telnet in a script

Karthik S S — Tue, 09 Mar 2004 05:16:06 GMT

Hi,

Yes it is possible with expect. Refer to my earlier thread on this topic,

http://forums1.itrc.hp.com/service/forums/questionanswer.do?threadId=45609

Regards,
KarthiK S S

Re: telnet in a script

Pippo_9 — Tue, 09 Mar 2004 05:28:54 GMT

Ok guys, thanks for suggestions!
I am looking for...

Kind regards,
Pedro

Re: telnet in a script

Chris Wilshaw — Tue, 09 Mar 2004 05:32:09 GMT

There is a way using telnet's "TAC" facility (see the telnetd man page), although this should be considered as a potential security risk.

To set it up, change the telnetd line in /etc/inetd.conf to read

telnet stream tcp nowait root /usr/lbin/telnetd telnetd -t

then restart inetd (inetd -c)

This then enables telnet sessions to use standard equavalency via the hosts.equiv file.

The security issue with this is that it connects to the remote server using the UID number, rather than the user name.

eg: you have 2 servers server1 and server2. On server1, userA has UID number 123 and userB has UID 456, on server2, userB has UID number 123, and userA has UID 456

If TAC is enabled, when userA issues the telnet command to connect from server1 to server2, they actually log in to server2 as userB, even though the ID userA exists

Re: telnet in a script

Ron Kinner — Tue, 09 Mar 2004 14:10:25 GMT

Following is a working script which we use at work with only the IP address and login/password changed. This logs into a 3COM switch and makes a few changes then exits. The \r's were needed by the 3Com but my Ciscos don't need them.

REMOTE=A.B.C.D
(sleep 5
echo "\r"
sleep 1
echo "login\r"
sleep 1
echo "password\r"
sleep 3
echo "ethernet portState 2 disable\r"
sleep 1
echo "ethernet portState 1 enable\r"
sleep 1
echo "ethernet sum all\r"
sleep 2
echo "q\r"
sleep 1
echo "logout\r"
echo "\r") |telnet $REMOTE

Ron