Results 1 to 8 of 8

Thread: Need simple, insecure remote execution calls

  1. #1
    Join Date
    Feb 2009
    Beans
    190

    Question Need simple, insecure remote execution calls

    I have a LAN to which a mix of Linux and Windows (XP+) boxes will be attached. The LAN will not have internet access. I want to be able to write programs that can launch other programs on the other computers on the LAN without having to use login passwords. E.g. the program code would be something like:

    Code:
    system("SomeUtility remoteMachineId  remoteProgram.exe listOfProgramParams &");
    Ideally the LAN setup / configuring of the computers should be very easy.

    I have looked at SSH / Putty, but it appears I need to set up encryption keys and run an SSH agent, unless there is a way of configuring each machine to accept SSH commands without authentication and without using keys.

    rexec also seems a candidate, but can it be set up to not require authentication?

    Finally there is good old telnet. Can that be made to work?

  2. #2
    Join Date
    Oct 2009
    Beans
    Hidden!
    Distro
    Ubuntu 12.04 Precise Pangolin

    Re: Need simple, insecure remote execution calls

    Logins are there for a reason. If you make it so each machine can have programs launched without authentication, you are asking for trouble.

    In any case SSH gets my vote.
    Come to #ubuntuforums! We have cookies! | Basic Ubuntu Security Guide

    Tomorrow's an illusion and yesterday's a dream, today is a solution...

  3. #3
    Join Date
    Sep 2011
    Beans
    1,531

    Re: Need simple, insecure remote execution calls

    Quote Originally Posted by ticket View Post
    I have looked at SSH / Putty, but it appears I need to set up encryption keys and run an SSH agent, unless there is a way of configuring each machine to accept SSH commands without authentication and without using keys.
    You don't have to configure ssh with keys, it's just a good idea. But if you really wanted you could configure it with blank passwords & log in as root every time I suppose.

    I guess follow the opposite of what this and its daughter wikis say:

    https://help.ubuntu.com/community/SSH

  4. #4
    Join Date
    Sep 2009
    Location
    Freiburg/Germany
    Beans
    1,112
    Distro
    Ubuntu 12.10 Quantal Quetzal

    Re: Need simple, insecure remote execution calls

    If you really don't care about security you can install openbsd-inetd and use something like

    Code:
    6666 stream tcp nowait nobody /usr/sbin/tcpd /bin/bash
    in /etc/inetd.conf.

    That lets everybody run any Bash command line as user nobody on your box without authentication by writing it to port 6666/tcp, e.g. with

    Code:
    echo 'touch /tmp/foobar'| nc somebox.example.com 6666
    Anyone. Any Bash command line. Without authentication.
    ClassicMenu Indicator - classic GNOME menu for Unity
    Unsettings - configuration program for the Unity
    Privacy Indicator - easily switch privacy settings in Unity
    Arronax - create and modify app starters

  5. #5
    Join Date
    Oct 2009
    Beans
    Hidden!
    Distro
    Ubuntu 12.04 Precise Pangolin

    Re: Need simple, insecure remote execution calls

    Quote Originally Posted by diesch View Post
    Anyone. Any Bash command line. Without authentication.
    Thank you for the warning.

    I would suggest ssh with a passphraseless key instead of alternative methods.

    Having no authentication will lead to your system being owned.
    Come to #ubuntuforums! We have cookies! | Basic Ubuntu Security Guide

    Tomorrow's an illusion and yesterday's a dream, today is a solution...

  6. #6
    Join Date
    Oct 2005
    Location
    Al Ain
    Beans
    8,070

    Re: Need simple, insecure remote execution calls

    Howdy,

    Install Cygwin and OpenSSH Server on Windows. Make a key without passphrase as suggested above. Any other method is just looking for trouble and you will come to regret it.

  7. #7
    Join Date
    Feb 2009
    Beans
    190

    Re: Need simple, insecure remote execution calls

    Many thanks for the replies.

    I did a bit more research and yes indeed, ssh (without a passphrase) is the best method.

    I am assuming I can use Putty (from a windows box) in a command line the same way I can use the ssh command line from a linux box. Otherwise I
    guess I'll install cygwin on windows ...

  8. #8
    Join Date
    Oct 2009
    Beans
    Hidden!
    Distro
    Ubuntu 12.04 Precise Pangolin

    Re: Need simple, insecure remote execution calls

    Quote Originally Posted by ticket View Post
    I am assuming I can use Putty (from a windows box) in a command line the same way I can use the ssh command line from a linux box. Otherwise I
    guess I'll install cygwin on windows ...
    You can use putty to use sftp or ssh itself, if you want to use rsync, you'd need cygwin.
    Come to #ubuntuforums! We have cookies! | Basic Ubuntu Security Guide

    Tomorrow's an illusion and yesterday's a dream, today is a solution...

Tags for this Thread

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •