From owner-freebsd-questions  Tue Oct 28 03:39:58 1997
Return-Path: <owner-freebsd-questions>
Received: (from root@localhost)
          by hub.freebsd.org (8.8.7/8.8.7) id DAA16660
          for questions-outgoing; Tue, 28 Oct 1997 03:39:58 -0800 (PST)
          (envelope-from owner-freebsd-questions)
Received: from solist. ([193.219.246.204])
          by hub.freebsd.org (8.8.7/8.8.7) with SMTP id DAA16650
          for <questions@FreeBSD.ORG>; Tue, 28 Oct 1997 03:39:53 -0800 (PST)
          (envelope-from girgen@partitur.se)
Received: from partitur.se by solist. (SMI-8.6/SMI-SVR4)
	id MAA05244; Tue, 28 Oct 1997 12:38:09 +0100
Message-ID: <3455CEA1.E903AAAF@partitur.se>
Date: Tue, 28 Oct 1997 12:38:09 +0100
From: Palle Girgensohn <girgen@partitur.se>
Organization: Partitur
X-Mailer: Mozilla 4.03 [en] (X11; I; SunOS 5.5.1 sun4u)
MIME-Version: 1.0
To: questions@FreeBSD.ORG
Subject: rdump security?
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-questions@FreeBSD.ORG
X-Loop: FreeBSD.org
Precedence: bulk

Hi!

Two questions regarding rdump:

1. I can't quite get it to work ;-)  To get root on client to have
authority to rsh server machine, I tried adding client to the server
~root/.rhosts file. This was not enough. My guess is it has to do with
the login.conf introduced in 2.2.2, especially since it works connecting
to our older 2.1 server. I'm poking around with it right now, but any
tips are appreciated. How do I set up login.conf?

2. How do you go about to set up a decent security with using rdump? If
I do add possibility for rdump to access the server as root, this feels
like a huge security hole, right? So, how do you go about? What about
the 'operator' group? Is this created for this purpose, and will it be
of any use if I want cron to do the job?

best regards,
Palle