Re: rsh busted?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On 06/27/2016 05:51 PM, Tom Horsley wrote:
> On Mon, 27 Jun 2016 17:38:29 -0700
> Joe Zeff wrote:
> 
>> OK, that rules out everything except the two machines involved.  Can you 
>> use rsh from a different box or connect from the first one to a 
>> different one?
> 
> I've been experimenting, and it is very weird.
> 
> Apparently I can rsh to or from anything unless both the
> source and target are fedora 24 machines, then I get
> the no route to host error. (One machine being f24,
> no problem, two, and no route to host).
> 
> Worse yet, I've checked and I did turn off selinux, so
> it isn't selinux.
> 
> The machine I'm trying to reach is on a different subnet,
> so there is some firewall magic in the gateways and routers
> and wot-not to arrange for the reverse rsh connections
> to work, but other machines I can rsh into are on that
> same subnet, so the firewall magic must be working. And
> two f24 machines inside that subnet also cannot rsh to
> each other, and they wouldn't even need the routing magic.
> 
> Maybe I'll break out wireshark tomorrow and compare a
> working rsh to a broken rsh.
> 
> Or perhaps at some point it will be simpler to find all
> the rsh calls in the 47 gazillion lines of test scripts
> and make them use ssh instead :-).

Uh, just for giggles, rsh between two F24s and check the logs of the
target F24 machine. It may be that rsh is generating a FQDN of the
sending machine that doesn't match what you have in the .rhosts of the
target machine (and vice versa). I've seen this sorta weirdness before
with LDAP "host" records. Perhaps the same thing is going on with rsh.

Also make SURE you don't have firewalls between the two F24 machines
by looking at "iptables -L -n".
----------------------------------------------------------------------
- Rick Stevens, Systems Engineer, AllDigital    ricks@xxxxxxxxxxxxxx -
- AIM/Skype: therps2        ICQ: 226437340           Yahoo: origrps2 -
-                                                                    -
-    First Law of Work:                                              -
-    If you can't get it done in the first 24 hours, work nights.    -
----------------------------------------------------------------------
--
users mailing list
users@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe or change subscription options:
https://lists.fedoraproject.org/admin/lists/users@xxxxxxxxxxxxxxxxxxxxxxx
Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Have a question? Ask away: http://ask.fedoraproject.org
[Index of Archives]     [Older Fedora Users]     [Fedora Announce]     [Fedora Package Announce]     [EPEL Announce]     [EPEL Devel]     [Fedora Magazine]     [Fedora Summer Coding]     [Fedora Laptop]     [Fedora Cloud]     [Fedora Advisory Board]     [Fedora Education]     [Fedora Security]     [Fedora Scitech]     [Fedora Robotics]     [Fedora Infrastructure]     [Fedora Websites]     [Anaconda Devel]     [Fedora Devel Java]     [Fedora Desktop]     [Fedora Fonts]     [Fedora Marketing]     [Fedora Management Tools]     [Fedora Mentors]     [Fedora Package Review]     [Fedora R Devel]     [Fedora PHP Devel]     [Kickstart]     [Fedora Music]     [Fedora Packaging]     [Fedora SELinux]     [Fedora Legal]     [Fedora Kernel]     [Fedora OCaml]     [Coolkey]     [Virtualization Tools]     [ET Management Tools]     [Yum Users]     [Yosemite News]     [Gnome Users]     [KDE Users]     [Fedora Art]     [Fedora Docs]     [Fedora Sparc]     [Libvirt Users]     [Fedora ARM]

  Powered by Linux