on echelon website i found this script used to update ssh
for ((i=1; i <= 30 ; i++)) #run through all nodes
echo updating node $i
scp /etc/passwd e$i:/etc/
scp /etc/passwd- e$i:/etc/
scp /etc/shadow e$i:/etc/
scp /etc/shadow- e$i:/etc/
scp /etc/gshadow e$i:/etc/
scp /etc/gshadow- e$i:/etc/
scp /etc/group e$i:/etc/
scp /etc/group- e$i:/etc/
echo all passwords updated
also they found a way to override the need for rsh..
Perhaps the easiest way to avoid using rsh is to use ssh interchangeably.
One may simply uninstall all rsh,rcp and rlogin programs from the system
then link ssh, scp, and slogin to the corresponding r names.
The s programs have been designed to function exactly the same as the r
programs except in a secure manner.
However, some programs will still require the hosts.equiv and .rhosts file
to ascertain cluster information.
These can be created in the normal method but without the actual rprograms
installed on the system they donít pose any security threat.
so this is the final solution..
but my knowledge of linux doesn't allow me to apply it easily..
should i make symlinks to ssh scp and slogin and name the symlinks as rsh rcp and rlogin?
and again, should this be done on every node or i can script it?