HPE Community
Operating System - HP-UX
1827399 Members
4827 Online
109965 Solutions
New Discussion

more secure alternatives to .rhosts and .netrc

 
SOLVED
Go to solution
Mike_Ca Li
Regular Advisor

‎06-13-2005 02:47 AM

‎06-13-2005 02:47 AM

more secure alternatives to .rhosts and .netrc

HI:
I investigating more secure alternatives to .rhosts and .netrc for ftp
or shell communication between Sun boxes and Wintel boxes. I'm thinking
of certificates. I would like to get opinions and experiences from
persons who have done or attempting to do the migration from .rhosts /
.netrc to more secure methods. Thank you.
0 Kudos
Reply
5 REPLIES 5
Simon Hargrave
Honored Contributor

‎06-13-2005 02:55 AM

‎06-13-2005 02:55 AM

Re: more secure alternatives to .rhosts and .netrc

Yes, you can use SSH with passphraseless keys. Not quite as secure as SSH with passphrases, but much more secure than .rhosts et al.

Once the certificates are setup you can use ssh (in place of remsh), sftp in place of ftp, and scp in place of rcp.
0 Kudos
Reply
TwoProc
Honored Contributor

‎06-13-2005 02:57 AM

‎06-13-2005 02:57 AM

Re: more secure alternatives to .rhosts and .netrc

You need to check out ssh. Nice, secure, encrypted, key based. Provides a remote shell, securte encrypted ftp. You can push data through tar ball through the pipe, as well as Xwindows commands. Nice stuff.
We are the people our parents warned us about --Jimmy Buffett
0 Kudos
Reply
Uday_S_Ankolekar
Honored Contributor

‎06-13-2005 03:00 AM

‎06-13-2005 03:00 AM

Re: more secure alternatives to .rhosts and .netrc

We are using secure shell for all our HP servers. (ssh,sftp,scp etc..)
You can also configure your SUN and wintel servers with similar things

www.openssh.org for more info.

-USA..
Good Luck..
0 Kudos
Reply
Fred Ruffet
Honored Contributor

‎06-13-2005 03:15 AM

‎06-13-2005 03:15 AM

Re: more secure alternatives to .rhosts and .netrc

Like others, I will recommend SSH. It is free, works pretty well, and is so much more secure than rcommands :)

For the Wintel part, I would suggest PuTTY. It's a SSH client to connect to your servers.
Fillezilla offers a free SSH2 SFTP graphical client.

Regards,

Fred
--

"Reality is just a point of view." (P. K. D.)
0 Kudos
Reply
Olivier Masse
Honored Contributor

‎06-13-2005 03:16 AM

‎06-13-2005 03:16 AM

Solution

Re: more secure alternatives to .rhosts and .netrc

Check this article by Brian Hatch on passwordless SSH logins. Highly recommended.
http://www.hackinglinuxexposed.com/articles/20021211.html
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.