LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 11-09-2006, 11:08 PM   #1
keith johnson
LQ Newbie
 
Registered: Oct 2006
Posts: 9

Rep: Reputation: 0
ruptime and rwhod?


Are there any known issues with starting rwhod on multiple UNIX systems on a network...? I.e. if I get hacked on one system does the hacker own me and my systems/network?
-KJ

Last edited by keith johnson; 11-09-2006 at 11:13 PM. Reason: misstakenly pressed enter
 
Old 11-10-2006, 04:18 PM   #2
chort
Senior Member
 
Registered: Jul 2003
Location: Silicon Valley, USA
Distribution: OpenBSD 4.6, OS X 10.6.2, CentOS 4 & 5
Posts: 3,660

Rep: Reputation: 76
cve.mitre.org lists a few historical vulnerabilities for rwhod, but nothing recent. In general it's never a good idea to run any network service unless you absolutely need it. The more services you run, the higher the possibility is that one will have a vulnerability and the more things you have to worry about patching right away.

If you did run rwhod on all your machines and an attacker was able to compromise one of them through an exploit of rwhod, it is extremely likely that they would systemically take over every other machine on your network that was running the service.
 
Old 11-16-2006, 07:20 PM   #3
keith johnson
LQ Newbie
 
Registered: Oct 2006
Posts: 9

Original Poster
Rep: Reputation: 0
Very logical...

In my case I am looking for a way to monitor (some) real systems that are split up into (numerous) virtual systems.

any-who I am trying to have each system watch the other(s) with the least downside and no extra costs (real dollar, and risk)

I currently use a simple ping script that I wrote but it is not as good as I would like and it is not giving the data that ruptime returns that would be very helpful
For example is my app working when I think it should at any given time of the day

I tested rwho between my dev and another system temporally before posting my first post. And it returned all my active cron jobs with owner and job name a crossed the two systems. Thus with some parsing I can make a simple tool to monitor if the system peers are working as they should.

any ideas on what else to look at?
 
Old 11-16-2006, 07:22 PM   #4
keith johnson
LQ Newbie
 
Registered: Oct 2006
Posts: 9

Original Poster
Rep: Reputation: 0
... i.e. in the UNIX tool box...?
 
Old 11-18-2006, 12:29 PM   #5
chort
Senior Member
 
Registered: Jul 2003
Location: Silicon Valley, USA
Distribution: OpenBSD 4.6, OS X 10.6.2, CentOS 4 & 5
Posts: 3,660

Rep: Reputation: 76
Use ssh in with private keys that do not have passphrases. Of course, you'll want those accounts to not have privileges to modify anything on the system, but they could get uptime, load, running processes, etc.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
rwhod listens but won't talk tifkat Slackware 6 03-07-2007 08:22 AM
rwhod error messages MJatIFAD Linux - Security 4 09-18-2003 01:31 PM
Rwhod???? l0f33t Linux - Security 2 08-11-2003 02:17 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 04:49 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration