HPE Community
Operating System - HP-UX
1826489 Members
3791 Online
109692 Solutions
New Discussion

Re: Disabling RSH

 
SOLVED
Go to solution
Tim O'Connell
Regular Advisor

‎01-14-2008 08:10 AM

‎01-14-2008 08:10 AM

Disabling RSH

Hi,

We recently had a security audit & one of the responses was "rsh service running. Comment out the 'rsh' line in /etc/inetd.conf". Now I've checked inetd.conf & there is no 'rsh' line. I don't think it's running but how do I check what services are running. Also need to disable SNMP so any help on that service would be appreciated. We're running HPux 11.11 on 9000/800/L1500-7x

Many thanks,

Tim
0 Kudos
5 REPLIES 5
Jeff_Traigle
Honored Contributor

‎01-14-2008 08:26 AM

‎01-14-2008 08:26 AM

Solution

Re: Disabling RSH

The following three lines deal with the r-services:

login stream tcp nowait root /usr/lbin/rlogind rlogind
shell stream tcp nowait root /usr/lbin/remshd remshd
exec stream tcp nowait root /usr/lbin/rexecd rexecd

The "shell" line is specific to remsh. (rsh is restricted shell in HP-UX, but a typical auditor probably won't know or care about that.) The "login" line is specific to rlogin and the "exec" line is specific to rexec.
--
Jeff Traigle
0 Kudos
Jeff_Traigle
Honored Contributor

‎01-14-2008 08:32 AM

‎01-14-2008 08:32 AM

Re: Disabling RSH

Also, don't forget to run "inetd -c" after you comment those lines for the change to be effective immediately.

As for disabling SNMP, there are several files in /etc/rc.config.d for various subcomponents:

SnmpHpunix
SnmpMaster
SnmpMib2
SnmpTrpDst

Use the corresponding scripts in /sbin/init.d to stop the services and then change the values of the START variables in these files to 0.
--
Jeff Traigle
0 Kudos
Roberto Arias
Valued Contributor

‎01-14-2008 09:11 AM

‎01-14-2008 09:11 AM

Re: Disabling RSH

Hi Tim

Please look for file /etc/host.equiv or $HOME/.rhosts and remove. please see man page of rsh and rlogin
hth
The man is your friend
0 Kudos
Tim O'Connell
Regular Advisor

‎01-14-2008 09:22 AM

‎01-14-2008 09:22 AM

Re: Disabling RSH

Many thanks for the prompt replies. Points assigned.

Thanks,

Tim
0 Kudos
Tim O'Connell
Regular Advisor

‎01-14-2008 09:24 AM

‎01-14-2008 09:24 AM

Re: Disabling RSH

Problem resolved
0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.