-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Sergio Alvarez <[EMAIL PROTECTED]> wrote:
>
> I never thought it was possible to login to a splat machine without
> requiring a password.
In the given case you are logging in without a password because you
configured the box to let you do that. However, not just anyone can
login, because they have to have the specified RSA key that you
generated. So you should keep the key safe since whoever has it can
login.
The "root" account and "admin" account both run with UID 0, so the only
real difference between them is that "admin" gets a cpshell by default,
while "root" gets a bash shell.
> right now what we are trying to achieve is to run a script on the spat
> machine that will start a connection to a layer 3 switch to make some
> changes in the static routes when needed. So as you see, here the
> splat box is the client.
You will probably find it difficult to use just telnet commands to
control a switch non-interactively, something like:
{ echo "username"; echo "password"; echo "show config" } | telnet switch
probably will not work, because the switch might be sensitive to the
timing of the text you enter, because it expects a person to be typing,
rather than a program.
You will probably need the "expect" package, which allows you to write
interactive scripts that will stop and wait for prompts from the switch
before sending the next command/input.
The "expect" package requires TCL, so you will have to find a lot of
packages in order to install it. But it is probably what you want.
Again I will repeat my point from my "judgmental" post: If what you
really want is a box running Generic Linxu (RedHat), maybe you should
install just that. If SPLAT is getting in your way because it is
difficult to add these sorts of custom configuration, perhaps you should
install a more malleable RedHat release, and then simply run your
SmartCenter software on top of that. Just a suggestion.
- --
David DeSimone == Network Admin == [EMAIL PROTECTED]
"It took me fifteen years to discover that I had no
talent for writing, but I couldn't give it up because
by that time I was too famous. -- Robert Benchley
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
iD8DBQFGl6YiFSrKRjX5eCoRAkJyAJ4hLP2CSFgkLztX/wZ3SYjX58Ap7QCfcb2q
gAFI29M72dgO4ly9w+Ipi7k=
=8QGA
-----END PGP SIGNATURE-----
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[EMAIL PROTECTED]
=================================================
