topic help rcp problem.. in Operating System - Linux

help rcp problem..

jackfiled — Thu, 23 Oct 2003 19:18:29 GMT

Hi all
how to setup rcp

[root@ecfarm4 /root]# rcp a 211.230.50.34:/
Permission denied.

what's the problem..?
any tips would be helpful

Re: help rcp problem..

Stuart Browne — Thu, 23 Oct 2003 19:42:16 GMT

3 possible problems come to mind:

1) The 'rsh' service isn't enabled on the remote machine.
2) The 'root' user isn't permitted to use the r* services.
3) The .rhosts (host equivlancey) is not configured correctly.

Depending on what OS is on the server box (211.230.50.34) depends on the steps that you are now requried to take.

On a side note, is there any particular reason you are using plain-unsecure rcp instead of the OpenSSH equivlant (scp) ? It would be preferable that you set up SSH to send the data in an encrypted, and secure way, especially as it appears to be over a public network link.

Re: help rcp problem..

Steven E. Protter — Thu, 23 Oct 2003 22:22:15 GMT

Configuration files to check:

/etc/hosts.equiv it can block r-protocols.

You need a .rhosts file in the home directory of the user.

Check /etc/inetd.conf and or xinetd.conf for the r-protcols being run.

Check the disable flags in /etc/xinetd.d/ for rexec and rlogin.

You might want to restart inetd or the whole box if you make major changes.

SEP

Re: help rcp problem..

jackfiled — Thu, 23 Oct 2003 23:13:52 GMT

Oct 24 12:14:21 211.230.50.37/211.230.50.37 xinetd[22990]: START: ftp pid=25028 from=210.99.142.1
Oct 24 12:14:26 211.230.50.37/211.230.50.37 last message repeated 12 times
Oct 24 12:14:26 211.230.50.37/211.230.50.37 ftpd[25028]: FTP session closed
Oct 24 12:14:26 211.230.50.37/211.230.50.37 xinetd[22990]: EXIT: ftp pid=25028 duration=5(sec)
Oct 24 12:14:27 211.230.50.37/211.230.50.37 kernel: Non Fatal error on ida/c0d0

syslog is logging as above..
.rhosts /etc/hosts.equiv /etc/xinetd.d/rsh enabled..
what's the problem?
who help me?

Re: help rcp problem..

Stuart Browne — Thu, 23 Oct 2003 23:23:28 GMT

Given that none of those messages talk about rcp, but about ftp..

If it is as you say, and /etc/securetty has 'rsh' in it (or the pam.d entry for rsh is not rejecting root on pseudo-tty's), then I'd say firewall.

Re: help rcp problem..

jackfiled — Fri, 24 Oct 2003 00:19:25 GMT

/etc/pam.d/rsh
/etc/pam.d/rlogin
/etc/pam.d/rexec

after insert '#' pam_rhosts_auth each of them
it works fine ^^^^^^^^^^^^^^
thanks all

Re: help rcp problem..

Stuart Browne — Fri, 24 Oct 2003 01:35:09 GMT

That would mean that anybody (firewall permitting) will be able to use rsh/rlogin/rexec on your machine.

That is a VERY BAD thing.

If commenting out that line fixed it, it would mean that the '~/.rhosts' file on the server either did not have the correct permissions (600), or was not populated correctly (did you have a name, when it doesn't resolve?).

Re: help rcp problem..

Huc_1 — Fri, 24 Oct 2003 03:49:02 GMT

Yes, this is not such a good idea, I would at least use safer tool, I mean shh, sftp, scp because they are most probably already there on the system, so much safer (no clear password, strong encryptation, etc), same fuctionality.

Present setup to debbug, but when problem solved rectifie setup (make safe again), start using ssh tools.

I usualy disable all the "r" command (rsh,rhost) and ftp only use sft and ssh

Just my 0.02 Euro/cent

J-P

Re: help rcp problem..

Steven E. Protter — Fri, 24 Oct 2003 06:43:51 GMT

rcp functionality can be replaced safely without the risks that Stuart refers to as follows:

openssh

http://openssh.org

or get it from red hat with http://www.redhat.com as rpm files.

Password free access can be set up by exchanging public keys.

See attachement.

SEP