Ummm...passwords are not kept at all in .rhosts / host.equiv, only host names and (optionally) user and group names. Users from hosts listed in .rhosts / host.equiv are simply logged in without supplying a password. Hopefully, one would not add untrusted hosts or users to their .rhosts file regardless of whether the host was on the LAN or the WAN.
Hopefully also, system administrators will not open up rlogin or telnet (or any other unsecure ports) to the outside world. Larry Hiscock Western Computer Services -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of George Gallen Sent: Tuesday, November 08, 2005 11:20 AM To: u2-users@listserver.u2ug.org Subject: RE: [U2] Plant hopping help Once it's setup, the trust is assumed (no further authentication required), and the problem with rhosts is that passwords are kept in plain text. But in order to make it a see-nothing do-nothing, full trust must be assumed (so no password will be asked). For internal network machines, the risk is minimal For machines across the internet, the risk could be tragic George > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] Behalf Of Larry Hiscock > Sent: Tuesday, November 08, 2005 1:02 PM > To: u2-users@listserver.u2ug.org > Subject: RE: [U2] Plant hopping help > > > There is no "assumed" trust between machines with rlogin, the trust > relationship must be setup explicitly via the host.equiv or > .rhosts files. > If the machines are not listed in host.equiv or .rhosts, > rlogin will prompt > for a password. > > Larry Hiscock > Western Computer Services > > > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of George Gallen > Sent: Tuesday, November 08, 2005 9:03 AM > To: u2-users@listserver.u2ug.org > Subject: RE: [U2] Plant hopping help > > if each "plant" is on a different machine, and all machines > are running > unix, you could use the rlogin command. > > WARNING: rlogin has some very serious security risks however. > > rlogin is the equivilent of a telnet without the username/password > authentication. There is an assumed trust between machines and > usernames. > > > -----Original Message----- > > From: [EMAIL PROTECTED] > > [mailto:[EMAIL PROTECTED] Behalf Of Keith W. > > Roberts > > Sent: Tuesday, November 08, 2005 11:23 AM > > To: u2-users@listserver.u2ug.org > > Subject: RE: [U2] Plant hopping help > > > > > > You'll have to define this a bit more. Assuming you mean that each > > "plant" > > is a different account ... a simple EXECUTE 'LOGTO > ':ACCT.NAME will do > > it. > > > > -Keith > > > > ----Original Message---- > > From: [EMAIL PROTECTED] > > [mailto:[EMAIL PROTECTED] On Behalf Of Jason K. > > Szemborski > > Sent: Tuesday, November 08, 2005 7:30 AM > > To: u2-users@listserver.u2ug.org > > Subject: [U2] Plant hopping help > > > > > Hi all, > > > > > > I've been working on something that have run into a road > block and > > > know it can be done, but I can't figure it out. We have a > > > multi-plant system and I need to take a user from one plant to > > > another based on some search criteria. I have the search routine > > > written out and have a place to call a subroutine to move someone > > > from one plant to another but have yet to find anything > that can log > > > the user to another plant without them actually typing > it. Any help > > > would be greatly appreciated. > > > > > > Environment: Universe - Pick > > > > > > Thanks! > > > > > > Jason Szemborski > > > ------- > > > u2-users mailing list > > > u2-users@listserver.u2ug.org > > > To unsubscribe please visit http://listserver.u2ug.org/ > > ------- > > u2-users mailing list > > u2-users@listserver.u2ug.org > > To unsubscribe please visit http://listserver.u2ug.org/ > ------- > u2-users mailing list > u2-users@listserver.u2ug.org > To unsubscribe please visit http://listserver.u2ug.org/ > ------- > u2-users mailing list > u2-users@listserver.u2ug.org > To unsubscribe please visit http://listserver.u2ug.org/ ------- u2-users mailing list u2-users@listserver.u2ug.org To unsubscribe please visit http://listserver.u2ug.org/ -- No virus found in this incoming message. Checked by AVG Free Edition. Version: 7.1.362 / Virus Database: 267.12.8/163 - Release Date: 11/8/2005 -- No virus found in this outgoing message. Checked by AVG Free Edition. Version: 7.1.362 / Virus Database: 267.12.8/163 - Release Date: 11/8/2005 ------- u2-users mailing list u2-users@listserver.u2ug.org To unsubscribe please visit http://listserver.u2ug.org/
