rsh configurations on both the host-free secret

Others 2019-10-23 11:44:49 views: null

Rsh security is not guaranteed, all passwords are transmitted in plain text, if the server has a large number of external services, it is recommended not to use this protocol

We use CentOS system when installing RAC, each node needs to be configured relationship of mutual trust, so rsh, rlogin, rcp commands do not need to enter a password can operate other nodes.

 PS: The following steps are required to operate the two machines

Pre-conditions:

Turn off the firewall

Close selinux

1, first install the required packages on two machines:

yum -y install rsh  rsh-server  xinetd  

2, the configuration / etc / hosts Analysis:

Ip host hostname

 

3, edit the file /etc/hosts.equiv

The host name is written into two, one host name per line

4, in the user's home directory editor .rhosts file

vim .rhosts

The two hosts were written in, its own line

 

5, edit / etc / securetty additional three lines of text inside:

echo rsh >>/etc/securetty

echo rlogin >>/etc/securetty

echo rexec >>/etc/securetty

6, in /etc/xinetd.d/ directory, add two configuration files are as follows:

cat /etc/xinetd.d/rsh
# default: on
# # # description: The rshd server is the server for the rcmd(3) routine and,
# # # consequently, for the rsh(1) program. The server provides
# # # remote execution facilities with authentication based on
# # # privileged port numbers from trusted hosts.  service shell
service shell
{
disable = no
socket_type = stream
wait = no
user = root
log_on_success += USERID
log_on_failure += USERID
server = /usr/sbin/in.rshd
}

cat /etc/xinetd.d/rlogin
# default: on
# # description: rlogind is the server for the rlogin(1) program. The server
# # provides a remote login facility with authentication based on
# # privileged port numbers from trusted hosts.  service login
service login
{
disable = no
socket_type = stream
wait = no
user = root
log_on_success += USERID
log_on_failure += USERID
server = /usr/sbin/in.rlogind
}

7, restart the xinetd service:

systemctl restart xinetd.service

 

8, 514 queries whether the port is listening:

netstat -an | grep 514

tcp6   0   0    :::514                    :::*                     LISTEN

9, test whether you can access without a password:

rsh hostname

 

Guess you like

Origin www.cnblogs.com/litengfeideboke/p/11720303.html
Recommended
Ranking
Goldman: Microsoft is winning the war cloud services
Change admob ids on existing apps
【C++】Introduction to Object-Oriented Programming③ (Process-Oriented Programming Structured Programming Method | Structured Programming Method Concept / Features / Advantages and Disadvantages | Object-Oriented Programming Introduction )
2021-02-26 Luogu P1966 digging landmines-dfs violent search (backtracking method)
jqgrid seleccione todo cancelar una sola fila haga clic en cancelar evento
InstructTTS: Modeling Expressive TTS in Discrete Latent Space with Natural Language Style Prompt
hdu1312 “Red and Black”——DFS与递归的应用
【Linux】孤儿进程、僵死进程和信号
OCRアーティファクト、PDF、数式を変換可能
Linux kernel Tcp performance tuning
Daily
More
2024-06-04(0)
2024-06-03(1)
2024-06-02(0)
2024-06-01(1)
2024-05-31(1)
2024-05-30(0)
2024-05-29(1)
2024-05-28(1)
2024-05-27(1)
2024-05-26(0)

Code World

© 2018 codetd.com