Heinz Wittenbecher wrote:
> I'm trying to use rcp between a couple of Rhat/Caldera and SCO machines and
> am having difficulty to find the places to "allow" the use of rcp. I just
> can't seem to get rid of "permission denied".
>
> The machines are behind a firewall. I'm trying to develop an auto tar backup
> on several machines, rcp them to a RH7 that has a tapedrive. I don't want to
> just use a network backup as I want to copy the info to the RH7 first. I'll
> be keeping several backups on disk, i.e. 30 days worth so that retrieval
> doesn't have to be from tape until "old".
>
> Any pointers to "unsecure" rcp much appreciated.
>
I would try to use some thing different on my network but that is not the
question. when I try rcp I get the permission denied and then in the remote
machine's log I see:
Nov 6 09:14:18 remoteserver pam_rhosts_auth[3024]: denied to myworkstation as
bhughes: access not allowed
the command I used was
rcp testfile bhughes@remoteserver:/tmp
so.. It look like the rcp program is pam aware and there should be an entry for
pam to allow it. in the remoteserver /etc/pam.d there is no entry for
pam_rhosts_auth and I am assuming there needs to be. Do you also get the same
behavior going to the SCO box?
Which OS is on the remote end?
I hope this will get you started.
BTW the rcommand stuff really is pretty insecure I believe. If you have ssh on
the boxes you could do something like:
find {directories to archive} -print | cpio -oav | ssh -l backupuser -i
identityfile/to/use remoteserver 'cat > /remotebackups/machinename.$(date
+%y%m%d).cpio'
This pipes the output of cpio through ssh using an identity I set up with very
restricted rights on the server and writes it to a timestamp named file on the
remote server.
As with most things *nix there is about 50 ways to accomplish this task and it
may indeed be that rcp is the best for your situation. Since I don't know
anything about your situation or anything about rcp for that matter I certainly
am not in a position to make a judgement.
Hope this gets you started,
Bret
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
