Subject: Re: rexecd
To: John Nemeth <firstname.lastname@example.org>
From: Sean Davis <email@example.com>
Date: 02/22/2005 05:20:21
On Mon, Feb 21, 2005 at 07:04:51PM -0800, John Nemeth wrote:
> On Jul 14, 3:58pm, Sean Davis wrote:
> } On Mon, Feb 21, 2005 at 05:43:15PM -0800, Simon J. Gerraty wrote:
> } >
> } > > BTW, FreeBSD doesn't allow root to use rexecd. Should we add that
> } > >as well?
> } >
> } > Why allow it at all - it sends username/passwd in clear ?
> } So does rsh, and rsh is still quite useful on LANs for things like rdist, if
> } you can trust your physical connections.
> rsh doesn't send the password. rshd just checks to make sure the
> connection is originating on a "privileged" port and assumes that the
> client isn't lying.
I stand corrected.
( ) ASCII Ribbon Campaign
/ \ For Plain Text Email