ssh and rsh

Rick Stevens rstevens at vitalstream.com
Thu Aug 19 22:21:06 UTC 2004 

Bob McClure Jr wrote:
> On Thu, Aug 19, 2004 at 11:25:04AM -0700, Chen, Douglas wrote:
> 
>>Hi,
>>
>>My group has a segment of network with combination of Linux  (Redhat 8.0) and Sun sparc (Solaris 8)
>>behind company firewall. I was hoping to write a script to submit simulation job from Sun to different
>>Linux box but failed because rsh is disabled in Linux and ssh required password which make the script
>>harder to be used by everyone in the group. I have tried ssh-add, ssh-keygen with no luck.
>>
>>My question is 
>>
>>How can I enable rsh so I can run the script? I believe the security shouldn't be an issue since all
>>the systems are behind the firewall. or is there any other way that I can submit remote command
>>without password being asked?
>>
>>Thank you very much for your help.
>>
>>Douglas
> 
> 
> As root:
> 
>   cd /etc/xinetd.d
> 
> Edit rsh with your favorite editor.  "pico" is easy to use.  Change
> the line
> 
>         disable = yes
> 
>         disable = no
> 
> Then save and exit the editor.  Then
> 
>   service xinetd reload

Or you can get the public keys from machine(s) that are to submit the
job(s) (found in the "/etc/ssh/ssh_host_dsa_key.pub" file) and put it
in the root user's "~/.ssh/authorized_keys" file.  That will allow the
submitting machine to ssh as root to the server without passwords.

The format of the "~/.ssh/authorized_keys" file is one line per entry.
Each line contains the key "ssh-dss", a space, he public key from the
other machine, followed by a space and the login used.  Example:

ssh-dss 
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 
root at somehost.somedomain.com

----------------------------------------------------------------------
- Rick Stevens, Senior Systems Engineer     rstevens at vitalstream.com -
- VitalStream, Inc.                       http://www.vitalstream.com -
-                                                                    -
-  Tempt not the dragons of fate, since thou art crunchy and taste   -
-                         good with ketchup.                         -
----------------------------------------------------------------------

More information about the Redhat-install-list mailing list