Manualshelf

HP-UX Reference (11i v1 00/12) - 1 User Commands N-Z (vol 2)

ManualsBrandsHP ManualsSoftwareHP-UX Reference Manuals
241242243244245246247248249250
__________________________________________________________________________________________________________________________________________________________________________________________________
__________________________________________________________________________________________________________________________________________________________________________________________________
STANDARD Printed by: Nora Chuang [nchuang] STANDARD
/build/1111/BRICK/man1/neqn.1
________________________________________________________________
___ ___
r
remsh(1) Kerberos remsh(1)
NAME
remsh, rexec - execute from a remote shell
SYNOPSIS
remsh host [-l username ][-f/F][-k realm ][-P][-n] command
host [-l username ][-f/F][-k realm ][-P][-n] command
rexec host [-l username ][-n] command
DESCRIPTION
remsh connects to the specified host and executes the specified command. The host name can be either
the official name or an alias as understood by gethostbyname() (see gethostent(3N) and hosts(4)).
remsh copies its standard input (stdin) to the remote command, and the standard output of the remote
command to its standard output (stdout), and the standard error of the remote command to its standard
error (stderr). Hangup, interrupt, quit, terminate, and broken pipe signals are propagated to the remote
command. remsh exits when the sockets associated with stdout and stderr of the remote command
are closed. This means that remsh normally terminates when the remote command does (see
remshd(1M)).
By default, remsh uses the following path when executing the specified command:
/usr/bin:/usr/ccs/bin:/usr/bin/X11:/usr/contrib/bin:/usr/local/bin
remsh
uses the default remote login shell with the -c option to execute the remote command. If the
default remote shell is csh, csh sources the remote .cshrc file before the command. remsh cannot be
used to run commands that require a terminal interface (such as
vi) or commands that read their standard
error (such as more). In such cases, use rlogin or telnet instead (see rlogin(1) and telnet(1)).
The remote account name used is the same as your local account name, unless you specify a different
remote name with the
-l option. In addition, the remote host account name must also conform to other
rules which differ depending upon whether the remote host is operating in a Kerberos V5 Network Authen-
tication, i.e., secure environment or not. In a non-secure, or traditional environment, the remote account
name must be equivalent to the originating account; no provision is made for specifying a password with a
command. For more details about equivalent hosts and how to specify them, see hosts.equiv(4). The files
inspected by
remshd on the remote host are /etc/hosts.equiv
and $HOME/.rhosts (see
remshd(1M)).
In a Kerberos V5 Network Authentication environment, the local host must be successfully authenticated
before the remote account name is checked for proper authorization. The authorization mechanism is
dependent on the command line options used to invoke
remshd on the remote host (i.e., -K, -R
, -r,or
-k). For further information on Kerberos authentication and authorization see the Secure Internet Ser-
vices man page, sis(5) and remshd(1M).
Although Kerberos authentication and authorization may apply, the Kerberos mechanism is not applied to
the command or to its response. All information transferred between the local and remote host is still sent
in cleartext over the network.
In a secure or Kerberos V5-based environment, the following command line options are available:
-f Forward the ticket granting ticket (TGT) to the remote system. The TGT is not forwardable
from there.
-F Forward the TGT to the remote system and have it forwardable from there to another
remote system. -f and -F are mutually exclusive.
-k realm
Obtain tickets from the remote host in the specified realm instead of the remote host’s
default realm as specified in the configuration file krb.realms.
-P Disable Kerberos authentication.
If a command is not specified, instead of executing a single command, you will be logged in on the remote
host using rlogin (see rlogin(1)). Any rlogin options typed in on the command line are transmitted
to rlogin.Ifnocommand and the option -P is specified, rlogin will be invoked with -P to indicate
that Kerberos authentication (or secure access) is not required. This will mean that if a password is
requested, the password will be sent in cleartext. If a command is specified, options specific to
rlogin
are ignored by remsh.
HP-UX Release 11i: December 2000 1 Section 1781
___
___