again
on echelon website i found this script used to update ssh
Code:
#!/bin/bash
for ((i=1; i <= 30 ; i++)) #run through all nodes
do
echo updating node $i
scp /etc/passwd e$i:/etc/
scp /etc/passwd- e$i:/etc/
scp /etc/shadow e$i:/etc/
scp /etc/shadow- e$i:/etc/
scp /etc/gshadow e$i:/etc/
scp /etc/gshadow- e$i:/etc/
scp /etc/group e$i:/etc/
scp /etc/group- e$i:/etc/
done
echo all passwords updated
also they found a way to override the need for rsh..
Quote:
Perhaps the easiest way to avoid using rsh is to use ssh interchangeably.
One may simply uninstall all rsh,rcp and rlogin programs from the system
then link ssh, scp, and slogin to the corresponding r names.
The s programs have been designed to function exactly the same as the r
programs except in a secure manner.
However, some programs will still require the hosts.equiv and .rhosts file
to ascertain cluster information.
These can be created in the normal method but without the actual rprograms
installed on the system they don’t pose any security threat.
|
so this is the final solution..
but my knowledge of linux doesn't allow me to apply it easily..
should i make symlinks to ssh scp and slogin and name the symlinks as rsh rcp and rlogin?
and again, should this be done on every node or i can script it?
thanks!