LinuxQuestions.org
Visit the LQ Articles and Editorials section
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices

Reply
 
Search this Thread
Old 09-04-2012, 11:31 AM   #1
moerobins
LQ Newbie
 
Registered: Jun 2012
Posts: 2

Rep: Reputation: Disabled
disabling rexec, rsh, rlogin, and rcp on Debian


Hello all, I just want to make sure a server i'm setting up does not have any of the "r" daemons enabled (ie rexec, rsh, rlogin, and rcp)

Not sure if debian has them disabled by default or if someone can point me in the right direction to disable them

Distro is debian version 6 32bit

thanks
Moses
 
Old 09-04-2012, 12:05 PM   #2
MensaWater
Guru
 
Registered: May 2005
Location: Atlanta Georgia USA
Distribution: Redhat (RHEL), CentOS, Fedora, Debian, FreeBSD, HP-UX, Solaris, SCO
Posts: 5,950
Blog Entries: 5

Rep: Reputation: 755Reputation: 755Reputation: 755Reputation: 755Reputation: 755Reputation: 755Reputation: 755
So long as you have a relatively recent version of Debian I'd think these would be disabled by default in favor of ssh/scp/sftp.

Typically these r commands, if enabled, are enabled in either inetd or xinetd. I haven't used a new version of Debian for a while but my recollection is it used inetd. If you run "man inetd" or "man xinetd" you should see which is used and the location of conf files (typically /etc/inetd.conf or /etc/xinetd.conf or even /etc/xinetd.d as a directory of individual configuration files). You could also simply run "ps -ef |grep inetd" to see what process is running (if any - some distros don't even install inetd/xinetd by default). Of course you can also look for other stand alone daemons like rshd.

Since the commands listen on ports 513/514 you could simply run "lsof -i :513" and "lsof -i :514" to verify nothing is listening on those ports.
 
1 members found this post helpful.
Old 09-04-2012, 12:22 PM   #3
moerobins
LQ Newbie
 
Registered: Jun 2012
Posts: 2

Original Poster
Rep: Reputation: Disabled
VERY helpful info! thank you for the quick reply as well
looks like my first quess was right and with your info it is now confirmed. the "r" versions of cp, ftp,etc were replaced with the "s" secured versions
 
Old 09-04-2012, 12:33 PM   #4
MensaWater
Guru
 
Registered: May 2005
Location: Atlanta Georgia USA
Distribution: Redhat (RHEL), CentOS, Fedora, Debian, FreeBSD, HP-UX, Solaris, SCO
Posts: 5,950
Blog Entries: 5

Rep: Reputation: 755Reputation: 755Reputation: 755Reputation: 755Reputation: 755Reputation: 755Reputation: 755
ftp by the way isn't one of the r commands. The equivalent r command is rcp. ftp itself is also considered somewhat insecure. It listens on port 21 (and 20 for data). Since much of the world uses ftp for site to site transfers id does become necessary sometimes to enable but if so it is usually a good idea to insure the ftp directories are secured via jails or other methods. However, unless there is a specific need to use ftp then scp/sftp are the best to use as they encrypt the entire connection (login/password/data).

While you're at it you might want to verify telnet port 23 is not listening either. It is generally better to use ssh for transfers because here again ssh encrypts the entire connection.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
[SOLVED] rsh rlogin rcp, do I need to load a special pkg to use these commands on red hat 6 buddyl316 Linux - Newbie 2 02-24-2012 12:04 AM
[SOLVED] rsh and rlogin works but rcp doesn't work on my RHEL4 machine subbarai Linux - Newbie 5 09-29-2010 08:18 AM
Any deamon service for rlogin/rcp ust Linux - Newbie 1 09-12-2008 07:01 AM
rsh / rcp connection refused DotHQ Red Hat 3 09-07-2006 08:45 AM
problem with rcp and rsh ! iamthewind Linux - Software 1 11-21-2003 03:03 AM


All times are GMT -5. The time now is 06:22 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration