Hi,
One of our customer has asked us to disable the "RSH - remote shell service" as this is a vulnerability as per their policy. Request help and comments to overcome this. Also does enabling security feature in OXE help to over come this .
Regards,
Sunder.J
RSH service
Re: RSH service
rsh cannot turned of (because it's needed by some equipment like pcs)
the oxe trusted hosts feature takes care of it (a little bit). much more configurable and transparent in used rules is an external firewall. ask your customer which kind of security feature he'll prefer...
regards...
the oxe trusted hosts feature takes care of it (a little bit). much more configurable and transparent in used rules is an external firewall. ask your customer which kind of security feature he'll prefer...
regards...
--- back to basics... focus your eyes to the essential things... ---
Re: RSH service
Thanks for your reply. If PCS or spatial CS is not there will turning on trusted host suffice.Also Is there any document from ALE on this.
Regards,
Sunder.J
Regards,
Sunder.J
Re: RSH service
there is a little bit description in "system documentation/security/detailed description"
search for "trusted host" there.
if you don't trust this table. you can look also in the configuration files of the tcp-wrapper ("hosts.allow", "hosts.deny", etc...) which is in use by the trusted host feature.
regards...
search for "trusted host" there.
if you don't trust this table. you can look also in the configuration files of the tcp-wrapper ("hosts.allow", "hosts.deny", etc...) which is in use by the trusted host feature.
regards...
--- back to basics... focus your eyes to the essential things... ---
Re: RSH service
Enabling SSH feature , disables rsh feature. You can check rsh status under location.
/etc/xinetd.d/rsh
/etc/xinetd.d/rsh
Re: RSH service
yes. this will work too. but now a 8770/4760 needs an extra license to connect.
regards...
regards...
--- back to basics... focus your eyes to the essential things... ---