Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Remsh permission denied from HP-UX to W2k3 R2
Special Forums Windows & DOS: Issues & Discussions Remsh permission denied from HP-UX to W2k3 R2 Post 302612793 by Vraiages on Monday 26th of March 2012 10:40:27 AM
Old 03-26-2012
Remsh permission denied from HP-UX to W2k3 R2
Hello,

I've been stuck with this since a few days, and i hope i'll find some help here.

Here the story :

Since now, i've HP-UX servers with sap erp software on it. We managed a few years ago to build a special access to a w2k server with SFU.

Ux server execute this command :

remsh hostname batch.bat 001.JPG 002.JPG

This command allow ux server to launch a batch who move a named file (001.jpg) on the w2k server folder to another with the order name.

Ok so all working good before, i installed sfu on 2k server, i created same user than the ux one, and log/registered password with rsh passwd, added a .rhosts into windows/system32/drivers/etc. Working perfectly.

Now the 2k server is a bit too old, and i'm currently prepairing a new server with 2k3 R2 and SUA instead of SFU

I've done same things than for the old one :

- create a local user with the same username
- register password with rgpwd
- create a .rhosts file (with + + only for now, i know i need to be more secure but it's for testing purpose)
- uncomment file inetd.conf
- try to create also a hosts.equiv but not working, so i delete it
- add servers name and ip to windows hosts file.
- home folder for user is windir/sua (default folder for sua install)

I cannot run the batch manually
remsh hostname batch.bat 001.JPG 002.JPG
the error is Permission denied.

But if i do remsh hostname -l username, it works :

HTML Code:
$ remsh server -l username
Password:
Copyright (c) Microsoft Corporation.  All rights reserved.

Welcome to the SUA utilities.

DISPLAY=localhost:0.0
$ ls
bin             docs            lib             opt             usr
common          etc             movearg.bat     proc            var
dev             help            net             tmp
$
So something is missing but i don't really know what.

I really need your help with this, because i'm stuck and i don't know what to check next.

I thank you for any by advance !
Last edited by Vraiages; 03-29-2012 at 09:58 AM..
 

10 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

remsh and permission denied

i m trying to use remsh but i get "permission denied" can any one help me thnx in advance. $ remsh 193.188.0.59 -l operator sh test2.sh permission denied i create the .rhosts file at the remote machine. (1 Reply)
Discussion started by: kazanoova2
1 Replies

2. UNIX for Dummies Questions & Answers

./ Permission Denied.

Could someone tell me why I am getting a permission denied message when I attempt to run this on an out file? Thanks! (8 Replies)
Discussion started by: trouscaillon
8 Replies

3. UNIX for Dummies Questions & Answers

Permission Denied

I just started computer science at UW Milwaukee. When I access the university Solaris system from PuTTY, I get permission denied when I try to access the file I wrote. Now I really have no idea what I'm doing, I just don't understand why I get permission denied in my won directory. Thank You ... (0 Replies)
Discussion started by: howeezy
0 Replies

4. UNIX for Dummies Questions & Answers

Why do I keep getting .:Permission denied?

I'll start off by saying that I know very little about Unix - however, I do know that I have a .profile file in my home directory, and that I should be able to invoke it by typing . profile. However, when I do this for ANY .filename, I get ".: Permission denied". I'm pretty sure that there is... (12 Replies)
Discussion started by: bbersani
12 Replies

5. UNIX for Dummies Questions & Answers

Permission denied

I would like to copy data from local mechine to cluster. Basically, I typed scp -r DVD/ acount@cluster:/ it shows Permission denied. Could anyone please give me a clue to write permission on cluster, please? The poperty of where on cluster I'd like to put is drwxr-xr-x Any idea would... (1 Reply)
Discussion started by: su_in99
1 Replies

6. Red Hat

Permission denied

Hi guys im new to this db i have a small prob while installing websphereportal6.1i think i was installed succesfully but the error im getting is while starting server. check this out # ./serverStatus.sh -all Error loading: /usr/wps61/AppServer/java/jre/bin/classic/libjvm.so: cannot... (1 Reply)
Discussion started by: varma917989
1 Replies

7. Shell Programming and Scripting

Permission denied

I created a user so that when he logs in he will be directed to a menu /etc/passwd user1:x:115:1:Support -SysAd:/export/home/user1:/export/home/suppotrmenu/script.sh However when I logged in remotely from another server by ssh user1@1.1.1.1 , it saysexport/home/suppotrmenu/script.sh:... (4 Replies)
Discussion started by: lhareigh890
4 Replies

8. Linux

Permission denied

I am using korn shell When I type in Telnet on cmd line, I get message "cannot execute" How can I get permission to execute command ? In which dir is telnet located ? I looked in /usr/bin dir. but its not there Thanks (1 Reply)
Discussion started by: paramshamnani
1 Replies

9. UNIX for Dummies Questions & Answers

Permission denied

when i run echo "User” > /dev/tty5 why do i get permission denied? :confused: (2 Replies)
Discussion started by: chinababy
2 Replies

10. Ubuntu

Permission denied

Trying to get date into the txt file. It says Permission denied. echo $(date +%I:%M:%S_%D) >> /tmp/systemd_suspend_test_err.txt exec 2>> /tmp/systemd_suspend_test_err.txt if ; then # Do the thing you want before suspend here echo "we are suspending $(date +%I:%M:%S_%D)." elif ;... (5 Replies)
Discussion started by: drew77
5 Replies

LEARN ABOUT OPENSOLARIS

rhosts

hosts.equiv(4)							   File Formats 						    hosts.equiv(4)

NAME

       hosts.equiv, rhosts - trusted remote hosts and users

DESCRIPTION

       The  /etc/hosts.equiv  and .rhosts files provide the "remote authentication" database for rlogin(1), rsh(1), rcp(1), and rcmd(3SOCKET). The
       files specify remote hosts and users that are considered  "trusted". Trusted users are allowed to access the local system without supplying
       a  password.  The  library  routine  ruserok()  (see  rcmd(3SOCKET))  performs  the  authentication  procedure  for  programs  by using the
       /etc/hosts.equiv and .rhosts files. The	/etc/hosts.equiv file applies to the entire system, while individual users can maintain their  own
       .rhosts files in their home directories.

       These  files  bypass the standard password-based user authentication mechanism. To maintain system security, care must be taken in creating
       and maintaining these files.

       The remote authentication procedure determines whether a user from a remote host should be allowed to access  the  local  system  with  the
       identity  of  a local user. This procedure first checks the /etc/hosts.equiv file and then checks the .rhosts file in the home directory of
       the local user who is requesting access. Entries in these files can be of two  forms.  Positive	entries   allow  access,  while   negative
       entries deny access. The authentication succeeds when a matching positive entry is found. The procedure fails when the first matching nega-
       tive entry is found, or if no matching entries are found in either file. The order of entries is important. If the files contain both posi-
       tive and negative entries, the entry that appears first will prevail. The rsh(1) and rcp(1) programs fail if the remote authentication pro-
       cedure fails. The rlogin program falls back to the standard password-based login procedure if the remote authentication fails.

       Both files are formatted as a list of one-line entries.	Each entry has the form:

	 hostname [username]

       Hostnames must be the official name of the host, not one of its nicknames.

       Negative entries are differentiated from positive entries by a `-' character preceding either the  hostname or username field.

   Positive Entries
       If the form:

	 hostname

       is used, then users from the named host are trusted. That is, they may access the system with the same user name as they have on the remote
       system. This form may be used in both the  /etc/hosts.equiv and .rhosts files.

       If the line is in the form:

	 hostname username

       then  the named user from the named host can access the system. This form may be used in individual .rhosts files to allow  remote users to
       access the system as a different local user. If this form is used in the /etc/hosts.equiv file, the named remote user will  be  allowed	to
       access the system as  any local user.

       netgroup(4) can be used in either the  hostname or username fields to match a number of hosts or users in one entry. The form:

	 +@netgroup

       allows  access from all hosts in the named netgroup. When used in the username field, netgroups allow a group of remote users to access the
       system as a particular local user.  The form:

	 hostname +@netgroup

       allows all of the users in the named netgroup from the named host to access the system as the local user. The form:

	 +@netgroup1 +@netgroup2

       allows the users in netgroup2 from the hosts in netgroup1 to access the system as the local user.

       The special character `+' can be used in place of either hostname or username to match any host or user. For example, the entry

	 +

       will allow a user from any remote host to access the system with the same username. The entry

	 + username

       will allow the named user from any remote host to access the system. The entry

	 hostname +

       will allow any user from the named host to access the system as the local user.

   Negative Entries
       Negative entries are preceded by a `-' sign. The form:

	 -hostname

       will disallow all access from the named host. The form:

	 -@netgroup

       means that access is explicitly disallowed from all hosts in the named netgroup. The form:

	 hostname -username

       disallows access by the named user only from the named host, while the form:

	 + -@netgroup

       will disallow access by all of the users in the named netgroup from all hosts.

   Search Sequence
       To help maintain system security, the /etc/hosts.equiv file is not checked when access is being	attempted  for	super-user.  If  the  user
       attempting  access  is not the super-user, /etc/hosts.equiv is searched for lines of the form described above. Checks are made for lines in
       this file in the following order:

	   1.	  +

	   2.	  +@netgroup

	   3.	  -@netgroup

	   4.	  -hostname

	   5.	  hostname

       The user is granted access if a positive match occurrs.	Negative entries apply only to /etc/hosts.equiv and may be  overridden	by  subse-
       quent .rhosts entries.

       If no positive match occurred, the .rhosts file is then searched if the user attempting access maintains such a file. This file is searched
       whether or not the user attempting access is the super-user. As a security feature, the .rhosts file must be  owned  by	the  user  who	is
       attempting access. Checks are made for lines in .rhosts in the following order:

	   1.	  +

	   2.	  +@netgroup

	   3.	  -@netgroup

	   4.	  -hostname

	   5.	  hostname

FILES

       /etc/hosts.equiv    system trusted hosts and users

       ~/.rhosts	   user's trusted hosts and users

SEE ALSO

       rcp(1), rlogin(1), rsh(1), rcmd(3SOCKET), hosts(4), netgroup(4), passwd(4)

WARNINGS

       Positive  entries  in  /etc/hosts.equiv that include a username field (either an individual named user, a netgroup, or `+' sign)  should be
       used with extreme caution. Because  /etc/hosts.equiv applies system-wide, these entries	allow one, or a group of, remote users	to  access
       the system as any local user. This can be a security hole. For example, because of the search sequence, an /etc/hosts.equiv file consisting
       of the entries

	 +
	 -hostxxx

       will not deny access to "hostxxx".

SunOS 5.11							    23 Jun 1997 						    hosts.equiv(4)
All times are GMT -4. The time now is 06:21 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy