HPE Community
Operating System - HP-UX
1825162 Members
2391 Online
109679 Solutions
New Discussion юеВ

use of remsh command on hp-ux

 
Sangeeta Gupta
Occasional Contributor

тАО02-06-2007 12:30 AM

тАО02-06-2007 12:30 AM

use of remsh command on hp-ux

Hi,
I am working on hp-ux (itanium) .
1. I want to know if for using 'remsh' using rhosts file is a must.I have tried with hosts.equiv file but it doesnt work for me.

2. What is the security breach that can happen if i use rhosts file

Regards,
Sangeeta
0 Kudos
Reply
7 REPLIES 7
Pete Randall
Outstanding Contributor

тАО02-06-2007 12:40 AM

тАО02-06-2007 12:40 AM

Re: use of remsh command on hp-ux

The hosts.equiv file is for all users except root. The root user is required to have a .rhosts file. The security risk is that anyone can now, potentially, log in as root.


Pete

Pete
0 Kudos
Reply
James R. Ferguson
Acclaimed Contributor

тАО02-06-2007 12:41 AM

тАО02-06-2007 12:41 AM

Re: use of remsh command on hp-ux

Hi Sangetta:

THe manpages for 'rhosts' (or 'hosts,equiv(4)' provide the information necessary to setup the appropriate file on your servers. You don't offer details of what "doesn't work".

As for the potential security implications, again the manpages offer that explanation too, under the warnings section.

Be sure that your DNS is functioning when you setup the '.rhosts' hostnames.

Regards!

...JRF...
0 Kudos
Reply
TwoProc
Honored Contributor

тАО02-06-2007 01:10 AM

тАО02-06-2007 01:10 AM

Re: use of remsh command on hp-ux

Don't use remsh and rhosts. It's old, unsecure and a bad idea. Ditto hosts.equiv.

The more secure standard that has replaced that is ssh. You will have fully encrypted communication between servers that is not sniffable. You can create keys between servers that replace that whole ugly .rhosts mess.
We are the people our parents warned us about --Jimmy Buffett
0 Kudos
Reply
Peter Nikitka
Honored Contributor

тАО02-06-2007 01:41 AM

тАО02-06-2007 01:41 AM

Re: use of remsh command on hp-ux

Hi,

keep in mind, that /etc/hosts.equiv is for all users but root; set the permissions on this file to 644.

mfG Peter

PS: I recommend 'ssh' as the collegues before, nevertheless.
The Universe is a pretty big place, it's bigger than anything anyone has ever dreamed of before. So if it's just us, seems like an awful waste of space, right? Jodie Foster in "Contact"
0 Kudos
Reply
Reshma Malusare
Trusted Contributor

тАО02-06-2007 01:49 AM

тАО02-06-2007 01:49 AM

Re: use of remsh command on hp-ux

Hi Sangeeta,

1.~/.rhosts --> User Equivalency (rw----)
[password free access to users]
So,for using Berkeley services like remsh,rcp,rlogin rhosts file is must.

2./etc/hosts.euiv --> System Equivalency
(r-r-r) It gives password free access to root,which will may create some Security issues.
so, I will suggest better go for SSH which is secure shell for encrypted data transfer.
0 Kudos
Reply
Steven E. Protter
Exalted Contributor

тАО02-06-2007 04:13 AM

тАО02-06-2007 04:13 AM

Re: use of remsh command on hp-ux

Shalom,

Note that secure shell, based on openssh can do everything remesh and the r-tools can do except.
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
0 Kudos
Reply
Reshma Malusare
Trusted Contributor

тАО02-06-2007 10:39 PM

тАО02-06-2007 10:39 PM

Re: use of remsh command on hp-ux

Hi Sangeeta,
if your query is solved then please close the thread & assign points to replies.
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.