243 lines
9.6 KiB
HTML
243 lines
9.6 KiB
HTML
<!--startcut ======================================================= -->
|
|
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
|
|
<html>
|
|
<head>
|
|
<META NAME="generator" CONTENT="lgazmail v1.3A.e">
|
|
<TITLE>The Answer Guy 48: Really Wants 'rsh' to Work. Really</TITLE>
|
|
</HEAD><BODY BGCOLOR="#FFFFFF" TEXT="#000000"
|
|
LINK="#3366FF" VLINK="#A000A0">
|
|
<!-- ::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::: -->
|
|
<H4>"The Linux Gazette...<I>making Linux just a little more fun!</I>"</H4>
|
|
<P> <hr> <P>
|
|
<!-- ::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::: -->
|
|
<center>
|
|
<H1><A NAME="answer">
|
|
<img src="../../gx/dennis/qbubble.gif" alt="(?)"
|
|
border="0" align="middle">
|
|
<font color="#B03060">The Answer Guy</font>
|
|
<img src="../../gx/dennis/bbubble.gif" alt="(!)"
|
|
border="0" align="middle">
|
|
</A></H1>
|
|
<BR>
|
|
<H4>By James T. Dennis,
|
|
<a href="mailto:linux-questions-only@ssc.com">linux-questions-only@ssc.com</a><BR>
|
|
LinuxCare,
|
|
<A HREF="http://www.linuxcare.com/">http://www.linuxcare.com/</A>
|
|
</H4>
|
|
</center>
|
|
|
|
<p><hr><p>
|
|
<!-- endcut ======================================================= -->
|
|
<!-- begin 43 -->
|
|
<H3 align="left"><img src="../../gx/dennis/qbubble.gif"
|
|
height="50" width="60" alt="(?) " border="0"
|
|
>Really Wants 'rsh' to Work. Really</H3>
|
|
|
|
|
|
<p><strong>From Mike Hahn on Mon, 18 Oct 1999
|
|
</strong></p>
|
|
<!-- ::
|
|
Really Wants 'rsh' to Work. Really
|
|
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
|
|
:: -->
|
|
<P><STRONG>
|
|
Dennis,
|
|
</STRONG></P>
|
|
<P><STRONG>
|
|
I have read all I could find on rsh and getting it to work to no avail.
|
|
I run a small CAD network and am in need of the rsh function. We are
|
|
on a small private network so hacking is not really a consern. I run
|
|
Mandrake Linux 6.0, Windows95/8/NT, IBM AIX, SUN Solaris, and DOS 6.2.
|
|
I can rsh from to all machines exept the Linux boxes. I have tried all
|
|
the suggestions in the "Answer Guy" columns that I could find. I did
|
|
notice that in all of the "problems" the error message was "permission
|
|
denied", what I am getting is "Connection Refused" Can you HELP?
|
|
</STRONG></P>
|
|
<P><STRONG>
|
|
Thank You.
|
|
</STRONG></P>
|
|
<P><STRONG>
|
|
M. Hahn
|
|
Systems Admin.
|
|
</STRONG></P>
|
|
<BLOCKQUOTE><IMG SRC="../../gx/dennis/bbub.gif" ALT="(!)"
|
|
HEIGHT="28" WIDTH="50" BORDER="0"
|
|
>
|
|
What does the rsh line in your <TT>/etc/inetd.conf</TT> file
|
|
look like?
|
|
</BLOCKQUOTE>
|
|
<BLOCKQUOTE>
|
|
It might be configured with command line options that
|
|
prevent the Linux version of in.rshd from honoring
|
|
certain types of .rhost file or force it to ignore
|
|
<TT>/etc/hosts.equiv.</TT> Here's an example:
|
|
</BLOCKQUOTE>
|
|
|
|
<blockquote><pre># /etc/inetd.conf: see inetd(8) for further informations.
|
|
shell stream tcp nowait root /usr/sbin/tcpd /usr/sbin/in.rshd -h
|
|
login stream tcp nowait root /usr/sbin/tcpd /usr/sbin/in.rlogind
|
|
</pre></blockquote>
|
|
<BLOCKQUOTE>
|
|
In this example the -h option was specified. That is a
|
|
common setting on many Linux distributions. It means that
|
|
"super user accounts may not be accessed through this
|
|
service" (i.e. 'root' and any other accounts with UID=0).
|
|
</BLOCKQUOTE>
|
|
<BLOCKQUOTE>
|
|
If a -l option is specified than nobody's .rhosts file
|
|
will be allowed. (Only the <TT>/etc/hosts.equiv</TT> would be
|
|
consulted).
|
|
</BLOCKQUOTE>
|
|
<BLOCKQUOTE>
|
|
Read the in.rshd man page for all the gory details.
|
|
Keep in mind that the Linux version of rshd is likely to be
|
|
very picky about the forward and reverse hostname-IP address
|
|
mappings (in a mostly futile attempt to foil spoofing).
|
|
</BLOCKQUOTE>
|
|
<BLOCKQUOTE>
|
|
One trick for testing these sorts of problems is to
|
|
temporarily replace the in.rshd (or other inetd launched
|
|
daemon) with a wrapper shell script that calls 'strace'
|
|
with a command like:
|
|
</BLOCKQUOTE>
|
|
<BLOCKQUOTE><BLOCKQUOTE><CODE><BlockQuote>
|
|
strace -o <TT>/tmp/rshd.strace</TT> <TT>/usr/sbin/in.rshd.real</TT> $@
|
|
</BlockQuote></CODE></BLOCKQUOTE></BLOCKQUOTE>
|
|
<BLOCKQUOTE>
|
|
... and then try to connect to the service. After you get
|
|
an error, login to the system using some other means and
|
|
view the resulting "system call trace" file.
|
|
</BLOCKQUOTE>
|
|
<BLOCKQUOTE>
|
|
These 'strace' files can be difficult to read. However,
|
|
you can usually take a pretty good guess as to what the
|
|
problem is by watching for failures on<TT> open()</TT>,<TT> stat()</TT> and
|
|
<TT>lstat()</TT> calls.
|
|
</BLOCKQUOTE>
|
|
<BLOCKQUOTE>
|
|
(This strace trick is useful for all sorts of problems,
|
|
helping you isolate the missing configuration file or
|
|
directory that some program is failing to find or unable
|
|
to create/see. Of course I'd love to see a massive
|
|
"error messages" project for Linux that would add patches
|
|
to these programs to ensure that every distinct failure
|
|
mode at a clear error message and every man page had an
|
|
comprehensive list of the associated error messages and
|
|
suggested coping strategies).
|
|
</BLOCKQUOTE>
|
|
<BLOCKQUOTE>
|
|
Good look.
|
|
</BLOCKQUOTE>
|
|
|
|
<!-- sig -->
|
|
|
|
|
|
<!-- end 43 -->
|
|
<!--startcut ======================================================= -->
|
|
<P> <hr> <P>
|
|
<H5 align="center"><a href="http://www.linuxgazette.com/copying.html"
|
|
>Copyright ©</a> 1999, James T. Dennis
|
|
<BR>Published in <I>The Linux Gazette</I> Issue 48 December 1999</H5>
|
|
<H6 ALIGN="center">HTML transformation by
|
|
<A HREF="mailto:star@starshine.org">Heather Stern</a> of
|
|
Starshine Technical Services,
|
|
<A HREF="http://www.starshine.org/">http://www.starshine.org/</A>
|
|
</H6>
|
|
<P> <hr> <P>
|
|
<!-- begin tagnav ::::::::::::::::::::::::::::::::::::::::::::::::::-->
|
|
<TABLE WIDTH="95%"><TR VALIGN="center" ALIGN="center">
|
|
<TD colspan="2" rowspan="2"><A
|
|
HREF="../lg_answer48.html"
|
|
><IMG SRC="../../gx/dennis/answernew.gif"
|
|
ALT="[ Answer Guy Current Index ]"></A>
|
|
<TD colspan="2" rowspan="2"><A
|
|
HREF="../../tag/kb.html"
|
|
><IMG SRC="../../gx/dennis/answertoc.gif"
|
|
ALT="[ Index of Past Answers ]"></A></td>
|
|
<TD WIDTH="11%"><A HREF="../lg_answer48.html#greeting"><img
|
|
src="../../gx/dennis/smily.gif" alt="greetings" border="0"></A></TD>
|
|
<TD WIDTH="11%"><A HREF="1.html">1</A></TD>
|
|
<TD WIDTH="11%"><A HREF="2.html">2</A></TD>
|
|
<TD WIDTH="11%"><A HREF="3.html">3</A></TD>
|
|
<TD WIDTH="11%"><A HREF="4.html">5</A></TD>
|
|
</TR><TR VALIGN="center" ALIGN="center">
|
|
<TD WIDTH="11%"><A HREF="5.html">5</A></TD>
|
|
<TD WIDTH="11%"><A HREF="6.html">6</A></TD>
|
|
<TD WIDTH="11%"><A HREF="7.html">7</A></TD>
|
|
<TD WIDTH="11%"><A HREF="8.html">8</A></TD>
|
|
<TD WIDTH="11%"><A HREF="9.html">9</A></TD>
|
|
</TR><TR VALIGN="center" ALIGN="center">
|
|
<TD WIDTH="10%"><A HREF="10.html">10</A></TD>
|
|
<TD WIDTH="10%"><A HREF="11.html">11</A></TD>
|
|
<TD WIDTH="10%"><A HREF="12.html">12</A></TD>
|
|
<TD WIDTH="10%"><A HREF="13.html">13</A></TD>
|
|
<TD WIDTH="11%"><A HREF="14.html">14</A></TD>
|
|
<TD WIDTH="11%"><A HREF="15.html">15</A></TD>
|
|
<TD WIDTH="11%"><A HREF="16.html">16</A></TD>
|
|
<TD WIDTH="11%"><A HREF="17.html">17</A></TD>
|
|
<TD WIDTH="11%"><A HREF="18.html">18</A></TD>
|
|
</TR><TR VALIGN="center" ALIGN="center">
|
|
<TD WIDTH="10%"><A HREF="19.html">19</A></TD>
|
|
<TD WIDTH="10%"><A HREF="20.html">20</A></TD>
|
|
<TD WIDTH="10%"><A HREF="21.html">21</A></TD>
|
|
<TD WIDTH="10%"><A HREF="22.html">22</A></TD>
|
|
<TD WIDTH="11%"><A HREF="23.html">23</A></TD>
|
|
<TD WIDTH="11%"><A HREF="24.html">24</A></TD>
|
|
<TD WIDTH="11%"><A HREF="25.html">25</A></TD>
|
|
<TD WIDTH="11%"><A HREF="26.html">26</A></TD>
|
|
<TD WIDTH="11%"><A HREF="27.html">27</A></TD>
|
|
</TR><TR VALIGN="center" ALIGN="center">
|
|
<TD WIDTH="10%"><A HREF="28.html">28</A></TD>
|
|
<TD WIDTH="10%"><A HREF="29.html">29</A></TD>
|
|
<TD WIDTH="10%"><A HREF="30.html">30</A></TD>
|
|
<TD WIDTH="10%"><A HREF="31.html">31</A></TD>
|
|
<TD WIDTH="11%"><A HREF="32.html">32</A></TD>
|
|
<TD WIDTH="11%"><A HREF="33.html">33</A></TD>
|
|
<TD WIDTH="11%"><A HREF="34.html">34</A></TD>
|
|
<TD WIDTH="11%"><A HREF="35.html">35</A></TD>
|
|
<TD WIDTH="11%"><A HREF="36.html">36</A></TD>
|
|
</TR><TR VALIGN="center" ALIGN="center">
|
|
<TD WIDTH="10%"><A HREF="37.html">37</A></TD>
|
|
<TD WIDTH="10%"><A HREF="38.html">38</A></TD>
|
|
<TD WIDTH="10%"><A HREF="39.html">39</A></TD>
|
|
<TD WIDTH="10%"><A HREF="40.html">40</A></TD>
|
|
<TD WIDTH="11%"><A HREF="41.html">41</A></TD>
|
|
<TD WIDTH="11%"><A HREF="42.html">42</A></TD>
|
|
<TD WIDTH="11%"><A HREF="43.html">43</A></TD>
|
|
<TD WIDTH="11%"><A HREF="44.html">44</A></TD>
|
|
<TD WIDTH="11%"><A HREF="45.html">45</A></TD>
|
|
</TR><TR VALIGN="center" ALIGN="center">
|
|
<TD WIDTH="10%"><A HREF="46.html">46</A></TD>
|
|
<TD WIDTH="10%"><A HREF="47.html">47</A></TD>
|
|
<TD WIDTH="10%"><A HREF="48.html">48</A></TD>
|
|
<TD WIDTH="10%"><A HREF="49.html">49</A></TD>
|
|
<TD WIDTH="11%"><A HREF="50.html">50</A></TD>
|
|
<TD WIDTH="11%"><A HREF="51.html">51</A></TD>
|
|
<TD WIDTH="11%"><A HREF="52.html">52</A></TD>
|
|
<TD WIDTH="11%"><A HREF="53.html">53</A></TD>
|
|
<TD WIDTH="11%"><A HREF="54.html">54</A></TD>
|
|
</TR><TR VALIGN="center" ALIGN="center">
|
|
<TD colspan="3"><A HREF="55.html">55</A></TD>
|
|
<TD colspan="3"><A HREF="56.html">56</A></TD>
|
|
<TD colspan="3"><A HREF="57.html">57</A></TD>
|
|
</TR></TABLE>
|
|
</TR><TR VALIGN="center" ALIGN="center">
|
|
<!-- end tagnav ::::::::::::::::::::::::::::::::::::::::::::::::::::-->
|
|
<P> <hr> <P>
|
|
<!-- begin lgnav ::::::::::::::::::::::::::::::::::::::::::::::::::: -->
|
|
<A HREF="../index.html"
|
|
><IMG SRC="../../gx/indexnew.gif" ALT="[ Table Of Contents ]"></A>
|
|
<A HREF="../../index.html"
|
|
><IMG SRC="../../gx/homenew.gif" ALT="[ Front Page ]"></A>
|
|
<A HREF="../lg_bytes48.html"
|
|
><IMG SRC="../../gx/back2.gif" ALT="[ Previous Section ]"></A>
|
|
<A HREF="../../faq/index.html"
|
|
><IMG SRC="../../gx/dennis/faq.gif"
|
|
ALT="[ Linux Gazette FAQ ]"></A>
|
|
<A HREF="../lg_tips48.html"
|
|
><IMG SRC="../../gx/fwd.gif" ALT="[ Next Section ]"></A>
|
|
<!-- end lgnav ::::::::::::::::::::::::::::::::::::::::::::::::::::: -->
|
|
<!-- ::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::: -->
|
|
</BODY></HTML>
|
|
<!--endcut ========================================================= -->
|