*BSD News Article 80573


Return to BSD News archive

Path: euryale.cc.adfa.oz.au!newshost.carno.net.au!harbinger.cc.monash.edu.au!news.rmit.EDU.AU!news.unimelb.EDU.AU!munnari.OZ.AU!news.mel.connect.com.au!news.mel.aone.net.au!imci4!newsfeed.internetmci.com!news-feed.iguide.com!delphi.com!cam-news-feed1.bbnplanet.com!cpk-news-feed2.bbnplanet.com!cpk-news-hub1.bbnplanet.com!www.nntp.primenet.com!nntp.primenet.com!arclight.uoregon.edu!news.uoregon.edu!news.acsu.buffalo.edu!news.drenet.dnd.ca!crc-news.doc.ca!nott!nntp.igs.net!usenet
From: pomegranite@cnwl.igs.net (Mat Trudel)
Newsgroups: comp.unix.bsd.bsdi.misc
Subject: Re: Rdist
Date: Sun, 13 Oct 1996 06:35:56 GMT
Organization: IGS - Information Gateway Services
Lines: 27
Message-ID: <53pocr$8ov@nntp.igs.net>
References: <325F07C9.6DC0@lynx.bc.ca>
NNTP-Posting-Host: pomegranite.cnwl.igs.net
X-Newsreader: Forte Free Agent 1.0.82

>HOST = ( host1.abc.com )
>FILES = ( /usr/local/bin/test1 )
>${FILES} -> ${HOST}
>updating host1.abc.com
>Permission denied
>I think I missed something but I cannot find the relevant info from the
>man pages. Could someone point me to the right direction?

Agreed, the man pages are useless for this.  What you're missing is
the authentication part of the process.  I can't remember offhand who
you transfer the files as if you don't say explicitly who in the dist
file (i would recommend doing so. the man pages will tell you how to
do that much; basically HOST=(user@host1.abc.com))  Anyway, then what
you have to do (or at least this is how I did it on our system. If
someone sees a glaring security hole in this; let me know) is set up
an .rhosts file for whatever user you are transferring files as on the
recieving machine indicating that that user is trusted on the sending
machine.  This will cause the recieving machine to not require
authentication ie password from the sending machine; something it
could not do as part of rdist. doing it this way is more secure than
creating a special user on the recieving machine with no password (for
obvious, security through obscurity sucks reasons). Now, you should be
able to use rdist no problem.  

Mat Trudel
pomegranite@cnwl.igs.net