[mdlug] Remote SSH commands
Aaron Kulkis
akulkis00 at gmail.com
Mon Jan 17 23:27:01 EST 2011
Michael ORourke wrote:
> I think Aaron is drinking the Koolaide again! ;-)
>
Ooops, yeah, I type rcp out of habit...
> I don't think ftp/rcp is a good choice, especially when there are more
> secure utilities available.
>
true.. but if it's from one computer within a company
to another, just transmitting administrative scripts,
i'm not too worried about a router being a security
risk in the transaction, nor that a windows machine will
have a packet sniffer looking at administrative scripts
that the windows user cannot run.
But in general, I agree with your sentiments viz a viz security.
> -Mike
>
> ----- Original Message -----
> From: "Dan Pritts" <danno at umich.edu>
> To: "MDLUG's Main discussion list" <mdlug at mdlug.org>
> Sent: Friday, January 14, 2011 12:52 AM
> Subject: Re: [mdlug] Remote SSH commands
>
>
>> On Wed, Jan 12, 2011 at 01:20:56AM -0500, Mark Montague wrote:
>>> rcp is horribly insecure [*] (rsh - and its siblings rlogin and rcp --
>>> are much worse than ftp, which isn't really good to use either). Since
>>> you have ssh on the system, and have already set up a public/private
>>> keypair for ${USER}, use scp to distribute the files instead:
>>>
>>> scp /location/of/script ${USER}@${CLIENT}:${SCRIPT}
>>>
>>> [*] See http://www.google.com/search?q=rsh+security+issues
>> Oh, I'm sorry sir. I didn't realize you were root.
>>
>> danno
>> --
>> dan pritts
>> danno at umich.edu
>> 734-929-9770
>> _______________________________________________
>> mdlug mailing list
>> mdlug at mdlug.org
>> http://mdlug.org/mailman/listinfo/mdlug
>
>
> --------------------------------------------------------------------------------
>
>
>
> No virus found in this incoming message.
> Checked by AVG - www.avg.com
> Version: 9.0.872 / Virus Database: 271.1.1/3377 - Release Date: 01/13/11
> 02:34:00
>
>
> _______________________________________________
> mdlug mailing list
> mdlug at mdlug.org
> http://mdlug.org/mailman/listinfo/mdlug
More information about the mdlug
mailing list