11-06-2001
As mentioned it was not the most secure decision. Perhaps I should metion that these were completely secured boxes and on an internal, network that was not accessable from outside. Also, even if someone had physically been able to gain access the contents of the machines were actually trivial enough not to worry us if someone did hack in.
I offer host.equiv only as a point of information, it is definitely too insecure to use on an exposed box. However, I want to clearify something: you only have the account equivalency that you transfer between machines, thus, <b>root</b> = <b>root</b>, but <b>ONLY root</b> = <b>root</b> so saying that you have root equivilancy is not exactly accurate. If you log in on a remote trusted machine as <b>user1</b> you can only be <b>user1</b> on the local machine so this method is not much more insure than using .rhost, except you don't have control of the exact accounts that are equivilent. In fact, it is very similar to trust between domains in a Windows network (host.equiv basically spells out a one-way trust in Windows terminology).
As for spoofing that is certainly a risk for any system and you should always have any server behind a properly setup firewall to avoid spoofing. If someone can hack through your firewall SSH can offer more protection. Again, the best solution is always the secure one such as SSH2.
10 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
I'm trying to execute the next command:
" rsh CompName date "
which means i want to get the date from a machine which i have its CompName.
but i get the answer : "Connection refused"
what do i need to do ?
how can i sign myself as user or guest in the other machine ?
thanks in... (2 Replies)
Discussion started by: Inbal
2 Replies
2. Cybersecurity
How do I enable telnet access to a system running AT&T MLS? (1 Reply)
Discussion started by: smartgod
1 Replies
3. UNIX for Dummies Questions & Answers
Hello Friends,
I had an IRIX box won't let me login with any IDs (even root) Telnet, Rlogin, SSh. However, I can login by single user with root ID.
Telnet login >>> Connection closed by forgeign host.
Rlogin >>> Connection closed
SSh login >>> connection to address ???.????.???.??? ... (1 Reply)
Discussion started by: anphdula
1 Replies
4. Shell Programming and Scripting
Hi,
Any scripting experts out there that can point me to the right direction of writing a script using telnet and su to access a server without any users interaction such as login and entering passwd. Thanks.
Thanks in advance
vastare (1 Reply)
Discussion started by: vastare
1 Replies
5. UNIX for Advanced & Expert Users
Hi All,
I need to stop all the services for telnet & FTP as we want our
server to be more secure.
Please give me some steps for jumping to SSH protocol.
How can i disable telnet & ftp service on my server. (1 Reply)
Discussion started by: pradeep_desh
1 Replies
6. Solaris
Hi,
I have a Sun Ultra 5 desktop with Solaris 8. When I telnet/rlogin into any other host, the connection closes after few hours of inactivity.
I also have another Windows box which I use rarely. But when I telnet/rlogin into the same hosts using putty, the connection stays for days without any... (5 Replies)
Discussion started by: dr_gsb
5 Replies
7. IP Networking
Hai guys,
Both "rlogin" and "telnet" are used to login remote host.Is there any differece between these 2 commands? (or) are both same?
Thanks (1 Reply)
Discussion started by: Felicia23
1 Replies
8. Shell Programming and Scripting
I want to write a script that rlogins to a couple machines and then from the last machine, telnet into a final machine and execute a command. So in pseudocode it would look like:
rlogin host1
from host1 rlogin host2
from host2 telnet host3
from host 3 execute command
The reason for the... (6 Replies)
Discussion started by: mcburke38
6 Replies
9. Shell Programming and Scripting
I want to make a script which will execute a command from a remote server like below
rlogin server1
then
telnet server2
(username, password will be given)
now execute command (it may "ls -l *.txt") and give the output
I've to do this manually but want to make it automatic
Script may... (4 Replies)
Discussion started by: shoeb
4 Replies
10. Shell Programming and Scripting
cat & telnet
hello,
I need some help on using a file with the cat command. I want to set up a telnet connection with a network device with the ip-adress 10.3.0.1. Just executing the command 'telnet 10.3.0.1' gives a menu. For example, to show the help of the menu, you... (2 Replies)
Discussion started by: michealvh
2 Replies
rlogin(1) General Commands Manual rlogin(1)
NAME
rlogin - Connects the local host with a remote host
SYNOPSIS
rlogin [-8L] [-e character] [-l user] remote_host
The remote login command (rlogin) logs into remote_host and connects your local terminal to the remote host.
OPTIONS
Allows an 8-bit data path at all times. Otherwise, unless the Stop and Continue key sequences on the remote host are not standard, rlogin
uses a 7-bit data path and the eighth (high) bit of each byte is stripped. Changes the Escape character. Substitute the character you
choose for character. Changes the remote username to the one you specify. Otherwise, your local username is used at the remote host.
Allows the rlogin session to be run in litout mode. In this mode, the escape sequence ~. (where ~ is the escape character) disconnects you
from the remote host and the escape sequence ~^Z (where ^Z, or Ctrl-Z, is the suspend character) suspends the rlogin session if you are
using csh.
DESCRIPTION
The remote terminal type is the same as that given in the local TERM environment variable. The terminal or window size is also the same,
if the remote host supports them, and any changes in size are transferred. All echoing takes place at the remote host, so except for
delays, the terminal connection is transparent. Pressing the Stop and Continue key sequences stops and starts the flow of information, and
the input and output buffers are flushed on Interrupts. The rlogin command can only be used to connect to systems that are running the
rlogind daemon.
On systems that do not support rlogin, you can use telnet (if supported) as an alternative.
If you do not specify the -l option, the local username is used at the remote host. If -l user is specified, the username entered is used
at the remote host. In either case, the remote host allows access only if one or both of the following conditions is satisfied: The local
host is included in the remote host's /etc/hosts.equiv file, the local user is not the superuser, and the -l user option is not specified.
The local host is included in a $HOME/.rhosts file in the home directory of the remote user account. If -l user is specified, the local
username must also be included in the file.
If neither of these conditions is met and a password is defined for the remote user account, the remote host prompts for a password. The
remote password file is checked to verify the password entered, and the login prompt is displayed if the password is not correct. Pressing
the End-of-File key sequence at the login prompt ends the remote login attempt.
For security reasons, any $HOME/.rhosts file must be owned by either the remote user or the root user and should have permissions set to
600 (read and write by owner only).
In addition to the preceding conditions, rlogin also allows access to the remote host if the remote user account does not have a password
defined. However, for security reasons, use of a password on all user accounts is recommended.
Unless otherwise modified by the -e option, the standard Escape character for disconnecting from the remote host is a ~ (tilde). The Escape
character is only recognized by the remote host if it occurs at the beginning of a line. Otherwise, the Escape character is sent to the
remote host as a normal character. To send the Escape character to the remote host as a normal character at the beginning of a line, press
the Escape character twice. Pressing the Escape character and a (dot) (for example, ~.) immediately disconnects the local terminal from
the remote host.
EXAMPLES
In the following examples, the local host is listed in the /etc/hosts.equiv file at the remote host: To log in to a remote host with your
local username, enter: $ rlogin host2 Password: <Enter password>
To log off the remote host and close the connection, enter the End-of-File key sequence. To log in to a remote host with a differ-
ent username, enter: $ rlogin host2 -l dale
You are prompted to enter your password and then are logged in to the remote host host2 with the username dale. To log in to host2
with the your local username and change the Escape character to (backslash), enter: $ rlogin host2 -e\
FILES
Specifies remote hosts from which users can execute commands on the local host (provided these users have an account on the local host).
Specifies remote users who can use a local user account.
SEE ALSO
Commands: rcp(1), rsh(1), rlogind(8), telnet(1)
Files: rhosts(4)
rlogin(1)