Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Mailing Lists -> Oracle-L -> RE: No ".netrc"

RE: No ".netrc"

From: Jesse, Rich <Rich.Jesse_at_quadtechworld.com>
Date: Wed, 25 Feb 2004 14:26:22 -0600
Message-ID: <FBE1FCA40ECAD41180400050DA2BC54004E9373B@qtiexch2.qgraph.com>


I was thinking the exact same thing about .rhosts. 9iRAC requires using some sort of user equivalence between the RAC machines on the public AND private networks (not sure why both of them???), but the Step-by-Step instructions from MetaLink suggest using an /etc/hosts.equiv file instead of .rhosts.

Seems like it would be at least a little more secure then .rhosts, as long as you don't use the "+" qualifier in this file and maintain file security on it (default FS security and perhaps ACLs). A quick Google search didn't throw out any glaring security holes on a well-maintained /etc/hosts.equiv file.

Rich

Rich Jesse                           System/Database Administrator 
rjesse_at_qtiworld.com                  Quad/Tech International, Sussex, WI USA


-----Original Message-----

From: Jared.Still_at_radisys.com [mailto:Jared.Still_at_radisys.com] Sent: Wednesday, February 25, 2004 2:04 PM To: oracle-l_at_freelists.org
Subject: RE: No ".netrc"

If the security folks don't like .netrc, they're sure to dislike .rhosts and the r* utilities.

ssh would be better.

Jared



Please see the official ORACLE-L FAQ: http://www.orafaq.com

To unsubscribe send email to: oracle-l-request_at_freelists.org put 'unsubscribe' in the subject line.
--
Archives are at http://www.freelists.org/archives/oracle-l/
FAQ is at http://www.freelists.org/help/fom-serve/cache/1.html

-----------------------------------------------------------------
Received on Wed Feb 25 2004 - 14:25:34 CST

Original text of this message

HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US