From owner-freebsd-isp Wed Oct 29 16:40:43 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id QAA28974 for isp-outgoing; Wed, 29 Oct 1997 16:40:43 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from bastuba.partitur.se (bastuba.partitur.se [193.219.246.194]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id QAA28719 for ; Wed, 29 Oct 1997 16:38:18 -0800 (PST) (envelope-from girgen@partitur.se) Received: from partitur.se (dialup180-3-40.swipnet.se [130.244.180.168]) by bastuba.partitur.se (8.8.5/8.8.5) with ESMTP id BAA00604; Thu, 30 Oct 1997 01:37:40 +0100 (CET) Message-ID: <3457D6B6.C45A6573@partitur.se> Date: Thu, 30 Oct 1997 01:37:10 +0100 From: Palle Girgensohn Organization: Partitur X-Mailer: Mozilla 4.03b8 [en] (X11; I; FreeBSD 2.2-STABLE i386) MIME-Version: 1.0 To: "Jonathan A. Zdziarski" CC: John Brown , freebsd-isp@FreeBSD.ORG Subject: Re: rdist References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Hello all, Can it be the login.conf file introduced in 2.2.2 that is causing you trouble? I can do a rsh/rlogin/ranything as root to our 2.1-release machine, but not to any of our 2.2.2 stable machines. The /etc/hosts.equiv has no effect for root logins (says the some man page; sorry, can't remember which. Probably the sunos man page for hosts.equiv), and ~root/.rhosts is the proper way. My guess is this only works to a system that is pre-login.conf. I haven't had the time to investigate this yet, but my guess is that the auth-root-defaults part in the beginning must be altered in some way. Maybe someone can give me a hint? auth-root-defaults:\ :auth-login=krb_skey_or_passwd,passwd,kerberos,skey:\ :auth-rlogin=krb_or_skey,kerberos,skey:\ ^^^^^^^^^^^ ? Or maybe I just missed this: For security reasons, a users .rhosts file will be ignored if it is not a regular file, or if it is not owned by the user, or if it is writable by anyone other than the user. I'm not sure, and cannot test it now... Jonathan A. Zdziarski wrote: > > Don't think that's the problem but if you wanna change permissions do a > chmod 4555 to the file. > > ------------------------------------------------------------------------- > Jonathan A. Zdziarski NetRail Incorporated > Systems Engineering Manager 230 Peachtree St. Suite 500 > jonz@netrail.net Atlanta, GA 30303 > http://www.netrail.net (888) - NETRAIL > ------------------------------------------------------------------------- > > On Wed, 29 Oct 1997, John Brown wrote: > > :OK an Update.. I have setup rdist to go the other way and it works. (ie. I > :can go from remote to local but still cannot go the other way) I continue to > :get the permission denied on the other server. > : > :I have checked my hosts.equiv and .rhosts and both of these are correct or > :at least the same (except different host names) on both servers. > : > :When I check the /usr/bin/rsh on the server that it is running successfully > :on the permissions are r-sr-xr-x. On the server that I continue to get the > :error on the permissions are r-xr-xr-x . Can this cause the problem? and if > :so how do I correct/set the s permission flag? (Never had to do that before) > : > :Thanks > : > :> > :>On Wed, 29 Oct 1997, John Brown wrote: > :> > :>:I have been trying for a couple of days to get rdist to work so that I can > :>:send my passwd file from one server to another and am getting the error > :>:"Permission Denied" before an attemp is even made to connect to the remote > :>:system. > :>: > :>:I have looked through the archives and saw that many people have had the > :>:same problem but did not see any resolutions. > :>: > :>:Can someone tell me what I am missing permissions on? > :>: > :>:I am attempting to run as root my FreeBSD Box is running 2.2-Release. > :>: > :>:The following is the actual command i/o > :>: > :>:# rdist -f distfile1 > :>:updating host ns.remoteserver.com > :>:Permission denied. > :>: > :>:Thanks in advance for any assistance. > :>: > :>:John Brown > :>: > :> > :> > :