Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Block RSH access by IP address
Operating Systems Linux Block RSH access by IP address Post 302492802 by ab52 on Tuesday 1st of February 2011 01:31:28 PM
Old 02-01-2011
thanks guys
 

9 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Restricting access to a machine by IP Address

I have a need to allow only certain IP addresses to access a machine running solaris 9. I am not sure how this can be accomplished. Thanks in advance for your help. Patch (2 Replies)
Discussion started by: patch
2 Replies

2. Programming

Cannot access memory at address 0x8

Hi All I have a structure pointer and setting that pointer as NULL. When i tried to access the elements in the structure i am getting the error message. "Cannot access memory at address 0x8". This i tried in LINUX. When the same program is tried thro UNIX (HP-UX), i am not getting the message... (8 Replies)
Discussion started by: rkraj
8 Replies

3. UNIX for Advanced & Expert Users

Can kernel process access user address space ?

Can kernel process access user address space ? (2 Replies)
Discussion started by: subhotech
2 Replies

4. Shell Programming and Scripting

To block ip address

Hi, I need to block a ip address without logging to the server not for a single server for more number of servers. I use the tool " apf" to block an ip apf -d <Ipaddress> Is this can be done with the shell script.? (10 Replies)
Discussion started by: gsiva
10 Replies

5. Cybersecurity

How to access private IP address?

HI, I'm doing a research on client/server connection. I need to run the server code to open socket connection with the client code. To make the test real, I need to run the server code from a a machine far away from the client over the Internet. IN ORDER TO RUN THE CODE, the client has to know the... (3 Replies)
Discussion started by: ENG_MOHD
3 Replies

6. Solaris

Restrict XWindows Server Access by IP Address

We want to disable graphical logins on our Solaris 10(64bit sparc )boxes, but I haven't found any information on how to do it via google. Most likely I am using the wrong search terms (i've been looking for "xdmcp" and "x11" "disable") . While looking through the output of "svcs -a | grep... (3 Replies)
Discussion started by: the.gooch
3 Replies

7. What is on Your Mind?

Plan to Restrict RSS Access by IP Address

Hello Everyone, We plan to restrict all RSS news feed access soon based on IP address. This means that if you have a website or application that using our site RSS feeds, you can still do it; but your must register you site in this thread. So please reply with your IP address of your server... (7 Replies)
Discussion started by: Neo
7 Replies

8. Post Here to Contact Site Administrators and Moderators

Register Here to Permit RSS Access by IP Address

Hello Everyone, We now (only) permit access to our RSS news feed access based on IP address. This means that if you have a website or application that using our site RSS feeds, you can still do it; but your must register you site in this thread. So please reply with your IP address of your... (9 Replies)
Discussion started by: Neo
9 Replies

9. IP Networking

IPv6 address block assign/associate with an interface

Hello all, I am trying to receive (tcp/udp/sctp) traffic from all IPs and, eventually, all ports of an IPv6 address block using as few sockets as possible short of implementing my own network stack. One possible solution was to associate an IP block to an interface then bind to that... (6 Replies)
Discussion started by: redwil
6 Replies

LEARN ABOUT REDHAT

rsh

RSH()																	     RSH()

NAME

       rsh - remote shell

SYNOPSIS

       rsh host [-l username] [-n] [-d] [-k realm] [-f | -F] [-x] [-PN | -PO] command

DESCRIPTION

       Rsh  connects to the specified host, and executes the specified command.  Rsh copies its standard input to the remote command, the standard
       output of the remote command to its standard output, and the standard error of the remote command to its standard error.  This  implementa-
       tion  of  rsh  will accept any port for the standard error stream.  Interrupt, quit and terminate signals are propagated to the remote com-
       mand; rsh normally terminates when the remote command does.

       Each user may have a private authorization list in a file .k5login in his login directory.  Each line in this file should  contain  a  Ker-
       beros  principal  name  of  the form principal/instance@realm.  If there is a ~/.k5login file, then access is granted to the account if and
       only if the originater user is authenticated to one of the princiapls named in the ~/.k5login file.  Otherwise, the originating	user  will
       be  granted access to the account if and only if the authenticated principal name of the user can be mapped to the local account name using
       the aname -> lname mapping rules (see krb5_anadd(8) for more details).

OPTIONS

       -l username
	      sets the remote username to username.  Otherwise, the remote username will be the same as the local username.

       -x     causes the network session traffic to be encrypted.

       -f     cause nonforwardable Kerberos credentials to be forwarded to the remote machine for use by the  specified  command.   They  will	be
	      removed when command finishes.  This option is mutually exclusive with the -F option.

       -F     cause forwardable Kerberos credentials to be forwarded to the remote machine for use by the specified command.  They will be removed
	      when command finishes.  This option is mutually exclusive with the -f option.

       -k realm
	      causes rsh to obtain tickets for the remote host in realm instead of the remote host's realm as determined by krb_realmofhost(3).

       -d     turns on socket debugging (via setsockopt(2)) on the TCP sockets used for communication with the remote host.

       -n     redirects input from the special device /dev/null (see the BUGS section below).

       -PN

       -PO    Explicitly request new or old version of the Kerberos ``rcmd'' protocol.	The new protocol avoids many security  problems  found	in
	      the  old	one,  but  is  not  interoperable with older servers.  (An "input/output error" and a closed connection is the most likely
	      result of attempting this combination.)  If neither option is specified, some simple heuristics are used to guess which to try.

       If you omit command, then instead of executing a single command, you will be logged in on the remote host using rlogin(1).

       Shell metacharacters which are not quoted are interpreted on the local machine, while quoted metacharacters are interpreted on  the  remote
       machine.  Thus the command

	  rsh otherhost cat remotefile >> localfile

       appends the remote file remotefile to the local file localfile, while

	  rsh otherhost cat remotefile ">>" otherremotefile

       appends remotefile to otherremotefile.

FILES

       /etc/hosts
       ~/.k5login  (on remote host) - file containing Kerberos principals that are allowed access.

SEE ALSO

       rlogin(1), kerberos(3), krb_sendauth(3), krb_realmofhost(3)

BUGS

       If  you	are using csh(1) and put a rsh(1) in the background without redirecting its input away from the terminal, it will block even if no
       reads are posted by the remote command.	If no input is desired you should redirect the input of rsh to /dev/null using the -n option.

       You cannot run an interactive command (like rogue(6) or vi(1)); use rlogin(1).

       Stop signals stop the local rsh process only; this is arguably wrong, but currently hard to fix for  reasons  too  complicated  to  explain
       here.

																	     RSH()
All times are GMT -4. The time now is 09:30 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy