mrg@eterna.COM.AU (matthew green) wrote:

>   >rcmd() is too restrictive in terms of how it executes the remote command.
>   >It would be nice if you could force rcmd to use something like 'ssh' or some
>   >other higher-security authentication mechanism.
>   >
>   >This came out of a discussion between myself and Matt Green.  We were wishing
>   >there was a way to get 'rdist' to use 'ssh'.
>   
>   The new version of rdist [6.1.0] I think does not use rcmd anymore...

>i have be told that this version is incompatible with our current version,
>and, thus everyone else who is running the current rdist.

>that's not acceptible to me.  but if i'm wrong, then maybe it's something
>we should seriously look at.

OpenBSD just upgraded to 6.1.1 and exchanged some thoughts:

[forwareded from tech@openbsd.org, 
David Mazieres <dm@amsterdam.lcs.mit.edu>]
 
> I just put rdist 6.1.1 in the source tree.  The new version of rdist
> will receive files from the old rdist, but will not be able to send
> files to machines running the older version of rdist.
> /usr/bin/oldrdist is the old rdist program, which can be used to
> distribute files to machines with pre-6.1 versions of rdist.
> 
> David
> 
> P.S., to use the new rdist over ssh, you can say
> 
>         rdist -P /usr/local/bin/ssh-batch
> 
> where ssh-batch is a shell scrip like this:
> 
> #!/bin/sh
> /usr/local/bin/ssh -o"BatchMode yes" -o"ForwardX11 no" \
>         -o"ForwardAgent no" $*

Since I'm just going t use rdist for the first time, this sounds good
to me :-)

Martin
-- 
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
Martin Cracauer <cracauer@wavehh.hanse.de>  -  Fax +49 40 522 85 36
 BSD User Group Hamburg, Germany   -   No NeXTMail anymore, please.
 Copyright 1995. Redistribution via Microsoft Network is prohibited