Re: [nsp] remote shell / remote exec

From: Rafael A. Reta Rodriguez (rafareta@icave.com.mx)
Date: Wed Apr 04 2001 - 00:35:57 EDT


What user ar you using in your Unix box? It must be cisco-rsh

RafaReta

Laszlo PAL wrote:

> This is really strange. I have read all the related documentation and your
> helpful messages, but it still doesn't works. I have no idea.
>
> Here is my related config (the router called lion)
>
> no ip rcmd domain-lookup
> ip rcmd rcp-enable
> ip rcmd rsh-enable
> ip rcmd remote-host cisco-rsh 10.0.0.1 cisco-rsh enable
> ip rcmd remote-username cisco-rsh
>
> After I usses sh users command from 10.0.0.1 by entering
> rsh lion sh users
>
> I'm getting access denied message.
>
> If I debug the session on Lion, I have the following output
>
> Apr 3 11:19:45.976: RCMD: [514 <- 10.0.0.1:1023] recv 1022\0
> Apr 3 11:19:46.180: RCMD: [514 <- 10.0.0.1:1023] recv
> cisco-rsh\0cisco-rsh\0sh users\0
> Apr 3 11:19:46.180: RCMD: [514 -> 10.0.0.1:1023] send <OK>
> Apr 3 11:19:46.184: RCMD: [514 -> 10.0.0.1:1023] send <BAD,Access
> denied.>\n
>
> Do you have any idea?
>
> Thank you
> Laszlo
>
> > -----Original Message-----
> > From: Rafael A. Reta Rodriguez [mailto:rafareta@icave.com.mx]
> > Sent: 2001. március 22. 14:58
> > To: Cisco NSP
> > Cc: 'cisco-nsp@puck.nether.net'
> > Subject: Re: [nsp] remote shell / remote exec
> >
> >
> > You can configure RPC (rsh) on cisco.
> >
> > # conf t
> > ip rcmd rsh-enable
> > ip rcmd remote-host <user> <host> <user> eanble
> > ip rcmd source-interface <IntToAccessFrom>
> >
> > And if you have DNS problems and prefer a security hole than
> > a solution...
> >
> > no ip rcmd domain-lookup
> >
> > Now you can access your router form user@host with:
> >
> > #rsh <router> <command>
> >



This archive was generated by hypermail 2b29 : Sun Aug 04 2002 - 04:12:34 EDT