From owner-freebsd-questions Fri Nov 15 16:38:57 1996 Return-Path: owner-questions Received: (from root@localhost) by freefall.freebsd.org (8.7.5/8.7.3) id QAA00103 for questions-outgoing; Fri, 15 Nov 1996 16:38:57 -0800 (PST) Received: from mailhost.PII.COM (pii.com [192.77.209.1]) by freefall.freebsd.org (8.7.5/8.7.3) with SMTP id QAA29996 for ; Fri, 15 Nov 1996 16:38:55 -0800 (PST) Received: from PII.COM by PII.COM (4.1/SMI-4.4) id AA14721; Fri, 15 Nov 96 16:38:09 PST Received: by smtp with Microsoft Mail id <328D0CB7@smtp>; Fri, 15 Nov 96 16:37:11 PST From: Robert Clark To: "'freebsd-questions'" Subject: Re: Does RSH ignore ttys if .rhost present? Date: Fri, 15 Nov 96 16:36:00 PST Message-Id: <328D0CB7@smtp> Encoding: 49 TEXT X-Mailer: Microsoft Mail V3.0 Sender: owner-questions@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk I'm not sure of the gozinta and the gozouta, but you might be able to drive all three systems' serial ports from the one UPS output. Or null modem the systems together, and go tty to tty? Be sure your network hub is on a UPS too, or the message may never get there. [RC] ---------- From: owner-freebsd-questions To: dwhite Cc: questions Subject: Re: Does RSH ignore ttys if .rhost present? Date: Friday, November 15, 1996 6:57PM > > I thought that if a .rhosts file was present then the ttys file > > was ignored. I have a .rhosts file in ~root , but I cannot rsh > > to it. Works fine with non root. If it does not ignore ttys does > > anyone know how to get it to do so if one exists? > > thanks > > Somebody correct me on this, but doesn't this allow the root user on the > remote machine to gain root access to your machine? That doesn't sound > like a great idea. > > What program are you trying to run though rsh? Remember it actually logs > in as root, so if the port isn't secure then it won't be permitted. I don't really like the idea either, but here is my problem. 3 machines. 1 UPS. Nice UPS 1400 APC. I want to plug all three into it and when the primary one detects the power out it can rsh to the others and shut them down before the battery dies. The primary would trust nobody. The other two would trust only the primary. If anyone can think of another idea that does not involve buying two more UPS then let me know. I got the idea from the script for upsd off of ftp.ww.com. As per the secure port does this mean I would need to set ttyp0+ as SECURE. I really don't want to do that. I was hoping that root could log in from a untrusted port if the entry was in the .rhosts file. I know that this could be spoofed, but only the primary machine is important. The other two are a workstation that I nuke every so often myself and a test server to try stuff out on. thanks for the help