I still don't understand what's going on, but it's working now. Unfortunately this is only the development box, not production so at some point I'm expecting to have to set this up for real. Hopefully it will work correctly that time.
Thanks for all the help folks! :-) -----Original Message----- From: SAWYER Charlotte M [mailto:[EMAIL PROTECTED] Sent: Thursday, July 03, 2003 2:57 PM To: '[EMAIL PROTECTED]' Subject: RE: rexec via xinetd help Well, below is the tcpdump output from the linux desktop to the linux server -- happens to be easier to capture tcpdump stuff there -- and since it doesn't work either, figured it's still prove or disprove the connection. Looks to me like the two systems are talking to each other, just not saying the right things. :-) ========================================= 14:30:31.316451 css38025 1172 > svr-1.exec: S 3697755335:3697755335(0) win 5840 <mss 1460,sackOK,timestamp 753724 0,nop,wscale 0> (DF) 14:30:31.318775 svr-1.exec > css38025 1172: S 3743956802:3743956802(0) ack 3697755336 win 5792 <mss 1380,sackOK,timestamp 133294029 753724,nop,wscale 0> (DF) 14:30:31.318857 css38025 1172 > svr-1.exec: . ack 1 win 5840 <nop,nop,timestamp 753724 133294029> (DF) 14:30:31.319040 css38025 1172 > svr-1.exec: P 1:6(5) ack 1 win 5840 <nop,nop,timestamp 753724 133294029> (DF) 14:30:31.321787 svr-1.exec > css38025 1172: . ack 6 win 5792 <nop,nop,timestamp 133294031 753724> (DF) 14:30:31.328545 svr-1.1050 > css38025 1173: S 3744850136:3744850136(0) win 5840 <mss 1380,sackOK,timestamp 133294034 0,nop,wscale 0> (DF) 14:30:31.328596 css38025 1173 > svr-1.1050: S 3686431292:3686431292(0) ack 3744850137 win 5792 <mss 1460,sackOK,timestamp 753725 133294034,nop,wscale 0> (DF) 14:30:31.331020 svr-1.1050 > css38025 .1173: . ack 1 win 5840 <nop,nop,timestamp 133294036 753725> (DF) 14:30:31.331153 css38025 1172 > svr-1.exec: P 6:10(4) ack 1 win 5840 <nop,nop,timestamp 753726 133294031> (DF) 14:30:31.333640 svr-1.exec > css38025 1172: . ack 10 win 5792 <nop,nop,timestamp 133294037 753726> (DF) 14:30:31.333693 css38025 1172 > svr-1.exec: P 10:23(13) ack 1 win 5840 <nop,nop,timestamp 753726 133294037> (DF) 14:30:31.336192 svr-1.exec > css38025 1172: . ack 23 win 5792 <nop,nop,timestamp 133294038 753726> (DF) 14:30:31.339629 svr-1.exec > css38025 1172: F 1:1(0) ack 23 win 5792 <nop,nop,timestamp 133294040 753726> (DF) 14:30:31.339690 svr-1.1050 > css38025 1173: F 1:1(0) ack 1 win 5840 <nop,nop,timestamp 133294040 753725> (DF) 14:30:31.339905 css38025 1173 > svr-1.1050: F 1:1(0) ack 2 win 5792 <nop,nop,timestamp 753726 133294040> (DF) 14:30:31.339957 css38025 1172 > svr-1.exec: F 23:23(0) ack 2 win 5840 <nop,nop,timestamp 753726 133294040> (DF) 14:30:31.342734 svr-1.1050 > css38025 1173: . ack 2 win 5840 <nop,nop,timestamp 133294042 753726> (DF) 14:30:31.342790 svr-1.exec > css38025 1172: . ack 24 win 5792 <nop,nop,timestamp 133294042 753726> (DF) =================== netstat output ==================================== Active Internet connections (only servers) Proto Recv-Q Send-Q Local Address Foreign Address State tcp 0 0 *:exec *:* LISTEN tcp 0 0 *:sunrpc *:* LISTEN tcp 0 0 *:ftp *:* LISTEN tcp 0 0 *:ssh *:* LISTEN tcp 0 0 *:telnet *:* LISTEN tcp 0 0 svr-ftp1:x11-ssh-offset *:* LISTEN udp 0 0 *:syslog *:* udp 0 0 *:sunrpc *:* Active UNIX domain sockets (only servers) Proto RefCnt Flags Type State I-Node Path unix 2 [ ACC ] STREAM LISTENING 981 /dev/gpmctl unix 2 [ ACC ] STREAM LISTENING 1036 /tmp/.font-unix/fs7100 ============================================== -----Original Message----- From: Hermann Kaiser [mailto:[EMAIL PROTECTED] Sent: Thursday, July 03, 2003 12:01 PM To: [EMAIL PROTECTED] Subject: Re: rexec via xinetd help Maybe you should check what ports are involved and on which side the problem is. Try using tcpdump to see the traffic between both nodes. On the linux box "tcpdump host <name-or-ip-on-non-linux-box>. And to see if the linux box is listening on the rexec port use netstat -rn|grep 512. Please post the output then. ciao, Hermann On Thu, Jul 03, 2003 at 08:55:00AM -0700, SAWYER Charlotte M wrote: > That'll take a while to set up as 10.15.38.25 doesn't have telnetd or rexecd > set up. Also, the non-linux box is actually a non-*nix box......... > > -----Original Message----- > From: Hermann Kaiser [mailto:[EMAIL PROTECTED] > Sent: Wednesday, July 02, 2003 10:50 PM > To: [EMAIL PROTECTED] > Subject: Re: rexec via xinetd help > > > Try rexec 10.15.38.25 'ls' and the .netrc file is in the root-home > of css38025. I tried it myself from an AIX box to a RH7.3 box, and > it worked perfect. In my try I didn't quoted the password, but I > think it's just an example ;-). > >From what kind is the non-linux box and which version is the linux > box? > ciao, > Hermann > > On Wed, Jul 02, 2003 at 02:42:22PM -0700, SAWYER Charlotte M wrote: > > Still didn't work. :-( > > > > > > > > User output (still failed) ============================== > > ======================================= > > [EMAIL PROTECTED] root]# rexec -n svr-1 ls > > Username at svr-1: DOR > > Password: > > svr-1: No such file or directory > > rexec: Error in rexec system call, > > rexec: (The following system error may itself be in error) > > rexec: Illegal seek > > [EMAIL PROTECTED] root]# > > > > ========================== > > contents of .netrc file in user DOR's home directory (/home/DOR)========= > > ==================================================================== > > machine 10.15.38.25 login DOR password 'password' > > > > ====================================== > > debugging output from xinetd process--fresh re-start========== > > ============================================== > > [EMAIL PROTECTED] DOR]# xinetd -d > > 03/7/[EMAIL PROTECTED]:33:17: ERROR: 3828 {handle_includedir} /etc/xinetd.d/hold is not > a > > regular file. It is being skipped. > > 03/7/[EMAIL PROTECTED]:33:17: DEBUG: 3828 {handle_includedir} Reading included > > configuration file: /etc/xinetd.d/rexec [line=15] > > 03/7/[EMAIL PROTECTED]:33:17: DEBUG: 3828 {handle_includedir} Reading included > > configuration file: /etc/xinetd.d/telnet [line=14] > > 03/7/[EMAIL PROTECTED]:33:17: DEBUG: 3828 {handle_includedir} Reading included > > configuration file: /etc/xinetd.d/wu-ftpd [line=14] > > Service defaults > > CPS = max conn:15 wait:30 > > PER_SOURCE = 5 > > Bind = All addresses. > > Only from: All sites > > No access: No blocked sites > > Logging to syslog. Facility = authpriv, level = debug > > Log_on_success flags = HOST PID > > Log_on_failure flags = HOST ATTEMPT USERID > > > > Service configuration: exec > > id = exec > > flags = IPv4 > > socket_type = stream > > Protocol (name,number) = (tcp,6) > > port = 512 > > Groups = no > > PER_SOURCE = 5 > > Bind = All addresses. > > Server = /usr/sbin/in.rexecd > > Server argv = in.rexecd > > Only from: All sites > > No access: No blocked sites > > Logging to syslog. Facility = authpriv, level = debug > > Log_on_success flags = HOST PID > > Log_on_failure flags = HOST ATTEMPT USERID > > > > Service configuration: telnet > > id = telnet > > flags = REUSE IPv4 > > socket_type = stream > > Protocol (name,number) = (tcp,6) > > port = 23 > > Groups = no > > PER_SOURCE = 5 > > Bind = All addresses. > > Server = /usr/sbin/in.telnetd > > Server argv = in.telnetd > > Only from: 10.15.38.130(NUMERIC) 10.15.38.132(NUMERIC) > > 10.15.100.21(NUMERIC) 10.15.100.31(NUMERIC) 10.15.38.131(NUMERIC) > > 10.15.38.130(NUMERIC) > > No access: No blocked sites > > Logging to syslog. Facility = authpriv, level = debug > > Log_on_success flags = HOST PID > > Log_on_failure flags = HOST ATTEMPT USERID > > > > Service configuration: ftp > > id = ftp > > flags = IPv4 > > socket_type = stream > > Protocol (name,number) = (tcp,6) > > port = 21 > > Nice = 10 > > Groups = no > > PER_SOURCE = 5 > > Bind = All addresses. > > Server = /usr/sbin/in.ftpd > > Server argv = in.ftpd -lLioX -r > > Only from: All sites > > No access: No blocked sites > > Logging to syslog. Facility = authpriv, level = debug > > Log_on_success flags = HOST DURATION PID USERID > > Log_on_failure flags = HOST ATTEMPT USERID > > > > 03/7/[EMAIL PROTECTED]:33:17: DEBUG: 3828 {cnf_start_services} Started service: > > exec > > 03/7/[EMAIL PROTECTED]:33:17: DEBUG: 3828 {cnf_start_services} Started service: telnet > > 03/7/[EMAIL PROTECTED]:33:17: DEBUG: 3828 {cnf_start_services} Started service: ftp > > 03/7/[EMAIL PROTECTED]:33:17: DEBUG: 3828 {cnf_start_services} mask_max = 8, > > services_started = 3 > > 03/7/[EMAIL PROTECTED]:33:17: NOTICE: 3828 {main} xinetd Version 2.3.11 started > > with > > libwrap loadavg options compiled in. > > 03/7/[EMAIL PROTECTED]:33:17: NOTICE: 3828 {main} Started working: 3 available services > > 03/7/[EMAIL PROTECTED]:33:17: DEBUG: 3828 {main_loop} active_services = 3 > > 03/7/[EMAIL PROTECTED]:33:33: DEBUG: 3828 {main_loop} select returned 1 > > 03/7/[EMAIL PROTECTED]:33:33: DEBUG: 3828 {server_start} Starting service exec > > 03/7/[EMAIL PROTECTED]:33:33: DEBUG: 3828 {main_loop} active_services = 3 > > 03/7/[EMAIL PROTECTED]:33:33: DEBUG: 3829 {exec_server} duping 9 > > 03/7/[EMAIL PROTECTED]:33:33: DEBUG: 3828 {main_loop} active_services = 3 > > 03/7/[EMAIL PROTECTED]:33:33: DEBUG: 3828 {main_loop} select returned 1 > > 03/7/[EMAIL PROTECTED]:33:33: DEBUG: 3828 {check_pipe} Got signal 17 (Child exited) > > 03/7/[EMAIL PROTECTED]:33:33: DEBUG: 3828 {child_exit} waitpid returned = 3829 > > 03/7/[EMAIL PROTECTED]:33:33: DEBUG: 3828 {server_end} exec server 3829 exited > > 03/7/[EMAIL PROTECTED]:33:33: INFO: 3828 {conn_free} freeing connection > > 03/7/[EMAIL PROTECTED]:33:33: DEBUG: 3828 {child_exit} waitpid returned = -1 > > 03/7/[EMAIL PROTECTED]:33:33: DEBUG: 3828 {main_loop} active_services = 3 > > > > ===================================================== > > relevant info from daemonlog file =============== > > ======================================================= > > Jul 2 14:33:33 svr-1 in.rexecd[3829]: connect from css38025.dor > > > > > > ================================================================= > > relevant info from secure log file =================== > > =============================================================== > > Jul 2 14:33:33 svr-1 xinetd[3828]: START: exec pid=3829 from=10.15.38.25 > > > > > > > > > > > > -----Original Message----- > > From: Hermann Kaiser [mailto:[EMAIL PROTECTED] > > Sent: Wednesday, July 02, 2003 2:07 PM > > To: [EMAIL PROTECTED] > > Subject: Re: rexec via xinetd help > > > > > > the .netrc file is in the home of the non-linux machine and the syntax > > is: > > machine <your-linux-machine> login <login-name> password <your-password> > > ciao, > > Hermann > > > > On Wed, Jul 02, 2003 at 01:53:50PM -0700, SAWYER Charlotte M wrote: > > > YEAH!!! A solid lead! > > > > > > So the .netrc file is in the users' directory? What should the content > of > > > it be and in what syntax? > > > > > > -----Original Message----- > > > From: Hermann Kaiser [mailto:[EMAIL PROTECTED] > > > Sent: Wednesday, July 02, 2003 1:41 PM > > > To: [EMAIL PROTECTED] > > > Subject: Re: rexec via xinetd help > > > > > > > > > hmm, you get simple a timeout on the rexec command. > > > In the moment I remember what's wrong ... rexec doesn't > > > use the .rhost file, you need a .netrc file, for .rhosts you > > > should use rsh ... both files need to work a permission of 600. > > > ciao, > > > Hermann > > > > > > On Wed, Jul 02, 2003 at 12:14:47PM -0700, SAWYER Charlotte M wrote: > > > > Yeap, the daemon is running -- triggered from xinetd > > > > Don't need (or WANT) root -- would like to use the config options of > > > xinetd > > > > to control which hosts can do this..... > > > > > > > > Below are outputs from: > > > > ======================================================== > > > > USER DESKTOP:============================================== > > > > ============================================================= > > > > [EMAIL PROTECTED] root]# rexec -n svr-1 ls > > > > Username at svr-1: DOR > > > > Password: > > > > svr-1: No such file or directory > > > > rexec: Error in rexec system call, > > > > rexec: (The following system error may itself be in error) > > > > rexec: Illegal seek > > > > [EMAIL PROTECTED] root]# > > > > > > > > ============================================================== > > > > xinetd -d call showing debug info ============================== > > > > =============================================================== > > > > [EMAIL PROTECTED] log]# xinetd -d > > > > 03/7/[EMAIL PROTECTED]:05:22: ERROR: 3444 {handle_includedir} > > > > /etc/xinetd.d/hold is > > not > > > a > > > > regular file. It is being skipped. > > > > 03/7/[EMAIL PROTECTED]:05:22: DEBUG: 3444 {handle_includedir} Reading included > > > > configuration file: /etc/xinetd.d/rexec [line=15] > > > > 03/7/[EMAIL PROTECTED]:05:22: DEBUG: 3444 {handle_includedir} Reading included > > > > configuration file: /etc/xinetd.d/telnet [line=14] > > > > 03/7/[EMAIL PROTECTED]:05:22: DEBUG: 3444 {handle_includedir} Reading included > > > > configuration file: /etc/xinetd.d/wu-ftpd [line=14] > > > > Service defaults > > > > CPS = max conn:15 wait:30 > > > > PER_SOURCE = 5 > > > > Bind = All addresses. > > > > Only from: All sites > > > > No access: No blocked sites > > > > Logging to syslog. Facility = authpriv, level = debug > > > > Log_on_success flags = HOST PID > > > > Log_on_failure flags = HOST ATTEMPT USERID > > > > > > > > Service configuration: exec > > > > id = exec > > > > flags = IPv4 > > > > socket_type = stream > > > > Protocol (name,number) = (tcp,6) > > > > port = 512 > > > > Groups = no > > > > PER_SOURCE = 5 > > > > Bind = All addresses. > > > > Server = /usr/sbin/in.rexecd > > > > Server argv = in.rexecd > > > > Only from: All sites > > > > No access: No blocked sites > > > > Logging to syslog. Facility = authpriv, level = debug > > > > Log_on_success flags = HOST PID > > > > Log_on_failure flags = HOST ATTEMPT USERID > > > > > > > > Service configuration: telnet > > > > id = telnet > > > > flags = REUSE IPv4 > > > > socket_type = stream > > > > Protocol (name,number) = (tcp,6) > > > > port = 23 > > > > Groups = no > > > > PER_SOURCE = 5 > > > > Bind = All addresses. > > > > Server = /usr/sbin/in.telnetd > > > > Server argv = in.telnetd > > > > Only from: 10.15.38.130(NUMERIC) 10.15.38.132(NUMERIC) > > > > 10.15.100.21(NUMERIC) 10.15.100.31(NUMERIC) 10.15.38.131(NUMERIC) > > > > 10.15.38.130(NUMERIC) > > > > No access: No blocked sites > > > > Logging to syslog. Facility = authpriv, level = debug > > > > Log_on_success flags = HOST PID > > > > Log_on_failure flags = HOST ATTEMPT USERID > > > > > > > > Service configuration: ftp > > > > id = ftp > > > > flags = IPv4 > > > > socket_type = stream > > > > Protocol (name,number) = (tcp,6) > > > > port = 21 > > > > Nice = 10 > > > > Groups = no > > > > PER_SOURCE = 5 > > > > Bind = All addresses. > > > > Server = /usr/sbin/in.ftpd > > > > Server argv = in.ftpd -lLioX -r > > > > Only from: All sites > > > > No access: No blocked sites > > > > Logging to syslog. Facility = authpriv, level = debug > > > > Log_on_success flags = HOST DURATION PID USERID > > > > Log_on_failure flags = HOST ATTEMPT USERID > > > > > > > > 03/7/[EMAIL PROTECTED]:05:22: DEBUG: 3444 {cnf_start_services} Started service: > exec > > > > 03/7/[EMAIL PROTECTED]:05:22: DEBUG: 3444 {cnf_start_services} Started service: > > telnet > > > > 03/7/[EMAIL PROTECTED]:05:22: DEBUG: 3444 {cnf_start_services} Started service: ftp > > > > 03/7/[EMAIL PROTECTED]:05:22: DEBUG: 3444 {cnf_start_services} mask_max = 8, > > > > services_started = 3 > > > > 03/7/[EMAIL PROTECTED]:05:22: NOTICE: 3444 {main} xinetd Version 2.3.11 started > with > > > > libwrap loadavg options compiled in. > > > > 03/7/[EMAIL PROTECTED]:05:22: NOTICE: 3444 {main} Started working: 3 available > > services > > > > 03/7/[EMAIL PROTECTED]:05:22: DEBUG: 3444 {main_loop} active_services = 3 > > > > 03/7/[EMAIL PROTECTED]:05:36: DEBUG: 3444 {main_loop} select returned 1 > > > > 03/7/[EMAIL PROTECTED]:05:36: DEBUG: 3444 {server_start} Starting service exec > > > > 03/7/[EMAIL PROTECTED]:05:36: DEBUG: 3444 {main_loop} active_services = 3 > > > > 03/7/[EMAIL PROTECTED]:05:36: DEBUG: 3445 {exec_server} duping 9 > > > > 03/7/[EMAIL PROTECTED]:05:36: DEBUG: 3444 {main_loop} active_services = 3 > > > > 03/7/[EMAIL PROTECTED]:05:36: DEBUG: 3444 {main_loop} select returned 1 > > > > 03/7/[EMAIL PROTECTED]:05:36: DEBUG: 3444 {check_pipe} Got signal 17 (Child exited) > > > > 03/7/[EMAIL PROTECTED]:05:36: DEBUG: 3444 {child_exit} waitpid returned = 3445 > > > > 03/7/[EMAIL PROTECTED]:05:36: DEBUG: 3444 {server_end} exec server 3445 exited > > > > 03/7/[EMAIL PROTECTED]:05:36: INFO: 3444 {conn_free} freeing connection > > > > 03/7/[EMAIL PROTECTED]:05:36: DEBUG: 3444 {child_exit} waitpid returned = -1 > > > > 03/7/[EMAIL PROTECTED]:05:36: DEBUG: 3444 {main_loop} active_services = 3 > > > > > > > > ===================================================== > > > > syslog logging being sent to daemonlog file============== > > > > also shows successful 2 ssh log-ins > > > > ===================================================== > > > > [EMAIL PROTECTED] log]# tail daemonlog > > > > Jul 2 10:58:56 svr-1 sshd[3273]: Accepted password for root from > > > > 10.15.38.25 port 1306 ssh2 > > > > Jul 2 12:03:05 svr-1 sshd[3373]: Accepted password for root from > > > > 10.15.38.25 port 1689 ssh2 > > > > Jul 2 12:03:28 svr-1 in.rexecd[3421]: connect from css38025.dor > > > > Jul 2 12:04:26 svr-1 xinetd[523]: Exiting... > > > > Jul 2 12:05:36 svr-1 in.rexecd[3445]: connect from css38025.dor > > > > [EMAIL PROTECTED] log]# > > > > ===================================================================== > > > deleted the rest > > > > > > > > > -- > > > redhat-list mailing list > > > unsubscribe mailto:[EMAIL PROTECTED] > > > https://www.redhat.com/mailman/listinfo/redhat-list > > > > > > > > > -- > > > redhat-list mailing list > > > unsubscribe mailto:[EMAIL PROTECTED] > > > https://www.redhat.com/mailman/listinfo/redhat-list > > > > > > -- > > redhat-list mailing list > > unsubscribe mailto:[EMAIL PROTECTED] > > https://www.redhat.com/mailman/listinfo/redhat-list > > > > > > -- > > redhat-list mailing list > > unsubscribe mailto:[EMAIL PROTECTED] > > https://www.redhat.com/mailman/listinfo/redhat-list > > > -- > redhat-list mailing list > unsubscribe mailto:[EMAIL PROTECTED] > https://www.redhat.com/mailman/listinfo/redhat-list > > > -- > redhat-list mailing list > unsubscribe mailto:[EMAIL PROTECTED] > https://www.redhat.com/mailman/listinfo/redhat-list -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://www.redhat.com/mailman/listinfo/redhat-list -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://www.redhat.com/mailman/listinfo/redhat-list -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://www.redhat.com/mailman/listinfo/redhat-list
