ssh agent-forwarding was (RE: [nsp] remote shell / remote exec)

• Next message: Ramin K: "Re: [nsp] disabling auto logout"
• Previous message: Hallgren, Michael: "RE: [nsp] disabling auto logout"
• Next in thread: Matt Zimmerman: "Re: ssh agent-forwarding was (RE: [nsp] remote shell / remote exec)"
• Reply: Matt Zimmerman: "Re: ssh agent-forwarding was (RE: [nsp] remote shell / remote exec)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
• Mail actions: [ respond to this message ] [ mail a new topic ]

This reminds me,

Any of the Cisco folk out there know if we'll be able to use SSH agent
forwarding on the routers in a future software release?

e.g. Store the admin's RSA public key in the configuration related to the
particular username involved, or store the key in a file on a router
accessible filesystem and have a 'use file at filesystem path X as a key to
username fred' command in the config...

is this passwordless secure authentication possible with the kerberos
implementaiton on cisco? (excuse my ignorance).
 
> You can configure RPC (rsh) on cisco.
>
> # conf t
> ip rcmd rsh-enable
> ip rcmd remote-host <user> <host> <user> eanble
> ip rcmd source-interface <IntToAccessFrom>
>
> And if you have DNS problems and prefer a security hole than
> a solution...
>
> no ip rcmd domain-lookup
>
> Now you can access your router form user@host with:
>
> #rsh <router> <command>

• Next message: Ramin K: "Re: [nsp] disabling auto logout"
• Previous message: Hallgren, Michael: "RE: [nsp] disabling auto logout"
• Next in thread: Matt Zimmerman: "Re: ssh agent-forwarding was (RE: [nsp] remote shell / remote exec)"
• Reply: Matt Zimmerman: "Re: ssh agent-forwarding was (RE: [nsp] remote shell / remote exec)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
• Mail actions: [ respond to this message ] [ mail a new topic ]

This archive was generated by hypermail 2b29 : Sun Aug 04 2002 - 04:12:33 EDT