Yeah, I did the same thing and it works great. I have the .rhosts file in the user home directory. Is there a better and more secure place to keep it? All rsh/rlogin/rexec connections can enter the machine only through the interface configured using private address. The other interfaces have been firewalled. TIA On 8/16/06, Carl <carl@xxxxxxxxxxxx> wrote:
At 11:03 15/08/2006, jassduec@xxxxxxxxx wrote: >Hi All, > >I have two linux machines running CentOS 4.3 with kernel version >2.6.9-34.0.2EL. Each of the machines have two interfaces. One >interface is 1000 mbps and while the other one is 100mbps. I have >connected the 100mbps interface of both the machines to my network >switch and assigned them static public IP addresses given to me by the >network admin. I have connected the 1000mbps interfaces of both >machines together using a cross over cable and assigned the interfaces >private IPs namely 192.168.1.2 and 192.168.1.3. I have stopped the >firewall running at both the machines and allows all kinds of traffic. >I have installed the rsh-server package on both the machines and >enabled services like rsh, rlogin, rexec. I know about the >vulnerabilities of doing so and disabling the firewall. This is just a >test setup. I verified that the two machines can communicate using >both the 100mbps interfaces as well as the private ip addresses. I can >do rlogin/rsh/rexec between the two machines if i use the 100mbps >interfaces. I can also do rlogin/rsh between the two machines using >the private IP addresses (i.e. 1000mbps interfaces). However when i >try to rexec between the private IP addresses, i get an error that >"Where are you?" and connection lost. Why is it that i can do rexec >between the two machines using the 100mbps interfaces with static >public IP addresses but cannot do so using the private IP addresses. >Other services have no problem with this. I request if somebody can >help me out with this. > >Thanks in advance. >- >To unsubscribe from this list: send the line "unsubscribe linux-admin" in >the body of a message to majordomo@xxxxxxxxxxxxxxx >More majordomo info at http://vger.kernel.org/majordomo-info.html On machine A, have only a dns/host entry for machine B mapping to the private ip and vice versa on the other machine. Also have you got .rhosts files setup in the home directory of the user that is receiving the rsh/rexec etc...
- To unsubscribe from this list: send the line "unsubscribe linux-admin" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
