Oracle FAQ | Your Portal to the Oracle Knowledge Grid |
![]() |
![]() |
Home -> Community -> Mailing Lists -> Oracle-L -> RE: No ".netrc"
If the security folks don't like .netrc, they're sure to dislike .rhosts
and the r* utilities.
ssh would be better.
Jared
"John P Weatherman" <asahoshi_at_infionline.net>
Sent by: oracle-l-bounce_at_freelists.org
02/25/2004 11:17 AM
Please respond to oracle-l
To: oracle-l_at_freelists.org cc: Subject: RE: No ".netrc"
I do this with .rhosts, which bypass login security from a specified machine and account to a specified machine and account without needing the password at all. To be more secure, you could set up source and target machines with a restricted shell account that only allows the user to access the particular backup directory and the rcp command.
HtH,
John P Weatherman
Oracle Database Administrator
Advance America
> [Original Message]
> From: <mkline1_at_comcast.net>
> To: <oracle-l_at_freelists.org>
> Date: 2/25/2004 2:01:06 PM
> Subject: No ".netrc"
>
> Security is saying they don't like ".netrc" files.
>
> Is there a way to hide passwords and things that make passwords
unavailable and yet allow for some sort of "authorized" file transfers in
a
Unix/Unix environment?
>
> The current scripts which use the .netrc files take a copy of the
exports
from one box that does NOT have a tape drive to another box WITH a tape
drive for backup.
>
> Perhaps there is some software product with "agents" that are powered by
a set of rules and you don't have to give it passwords if you do what you
are allowed to do. Something where one perhaps could do a "moveit filename
remote_host remote_directory" and if the rule says okay, it happens, no
password needed.
>
> This is HP-UX if that makes any difference.
>
> --
> Michael Kline, Principle Consultant
> Business To Business Solutions
> 13308 Thornridge Ct
> Midlothian, VA 23112
> 804-744-1545
> ----------------------------------------------------------------
> Please see the official ORACLE-L FAQ: http://www.orafaq.com
> ----------------------------------------------------------------
> To unsubscribe send email to: oracle-l-request_at_freelists.org
> put 'unsubscribe' in the subject line.
> --
> Archives are at http://www.freelists.org/archives/oracle-l/
> FAQ is at http://www.freelists.org/help/fom-serve/cache/1.html
> -----------------------------------------------------------------
-- Archives are at http://www.freelists.org/archives/oracle-l/ FAQ is at http://www.freelists.org/help/fom-serve/cache/1.html ----------------------------------------------------------------- ---------------------------------------------------------------- Please see the official ORACLE-L FAQ: http://www.orafaq.com ---------------------------------------------------------------- To unsubscribe send email to: oracle-l-request_at_freelists.org put 'unsubscribe' in the subject line. -- Archives are at http://www.freelists.org/archives/oracle-l/ FAQ is at http://www.freelists.org/help/fom-serve/cache/1.html -----------------------------------------------------------------Received on Wed Feb 25 2004 - 14:02:48 CST
![]() |
![]() |