Dovelet, If you use rsh, you are allowing cleartext username/password info to be passed to the router to issue commands, so you are open to passive (sniffing) attacks. Also, unless you use a very good password, you are open to password guessing attacks. So yes, there is a potential security risk. (these risks also apply with telnet)
The better solution would be to use ssh. You would still be open to password guessing attacks unless you implement some sort of OTP such as SecurID or S/Key. If you absolutely need to use rsh, you could create an IPSec tunnel between your Unix machine and the router to encrypt your rsh info. If you use IPSec tunnel mode, you could HTH, Kent -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of dovelet Sent: Tuesday, November 20, 2001 12:32 AM To: [EMAIL PROTECTED] Subject: Any security concerns if rsh enabled on Cisco routers [7:26818] Hi all, I just find that Cisco routers can support rsh so that I can use a UNIX machine to remotely execute command. However, I would like to know is there any security holes if I enable rsh at Cisco routers? If so, how to improve it? Regards, Dovelet Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=27015&t=27015 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
