RE: [nsp] remote shell / remote exec

From: Laszlo PAL (laszlo.PAL@nextra.hu)
Date: Tue Apr 03 2001 - 05:24:08 EDT


This is really strange. I have read all the related documentation and your
helpful messages, but it still doesn't works. I have no idea.

Here is my related config (the router called lion)

no ip rcmd domain-lookup
ip rcmd rcp-enable
ip rcmd rsh-enable
ip rcmd remote-host cisco-rsh 10.0.0.1 cisco-rsh enable
ip rcmd remote-username cisco-rsh

After I usses sh users command from 10.0.0.1 by entering
rsh lion sh users

I'm getting access denied message.

If I debug the session on Lion, I have the following output

Apr 3 11:19:45.976: RCMD: [514 <- 10.0.0.1:1023] recv 1022\0
Apr 3 11:19:46.180: RCMD: [514 <- 10.0.0.1:1023] recv
cisco-rsh\0cisco-rsh\0sh users\0
Apr 3 11:19:46.180: RCMD: [514 -> 10.0.0.1:1023] send <OK>
Apr 3 11:19:46.184: RCMD: [514 -> 10.0.0.1:1023] send <BAD,Access
denied.>\n

Do you have any idea?

Thank you
Laszlo

> -----Original Message-----
> From: Rafael A. Reta Rodriguez [mailto:rafareta@icave.com.mx]
> Sent: 2001. március 22. 14:58
> To: Cisco NSP
> Cc: 'cisco-nsp@puck.nether.net'
> Subject: Re: [nsp] remote shell / remote exec
>
>
> You can configure RPC (rsh) on cisco.
>
> # conf t
> ip rcmd rsh-enable
> ip rcmd remote-host <user> <host> <user> eanble
> ip rcmd source-interface <IntToAccessFrom>
>
> And if you have DNS problems and prefer a security hole than
> a solution...
>
> no ip rcmd domain-lookup
>
> Now you can access your router form user@host with:
>
> #rsh <router> <command>
>



This archive was generated by hypermail 2b29 : Sun Aug 04 2002 - 04:12:34 EDT