eda223150a
possibility of a security hole. It now does what rdist-6 does, and calls /usr/bin/rsh if not running as root. There are NO protocol changes, this is 100% compatable with the old rdist, except that it does not need setuid root privs. However, there are some minor differences to the base rdist-6 code in that if it is being run by root, it will call rcmd(3) directly rather than piping everything through rsh(1). This is a little more efficient as it doesn't involve context switching on pipe reads/writes. Also, the -P option was added from rdist-6.1.2, which allows an alternative rsh program to be specified, such as ssh. Note that it requires the fixes to the ssh port to disable the unconditional USE_PIPES option that was recently added. The rcmd(3) optimisation is disabled if a non-rsh program is speficied.
17 lines
388 B
Makefile
17 lines
388 B
Makefile
# @(#)Makefile 8.3 (Berkeley) 7/19/93
|
|
|
|
PROG= rdist
|
|
CFLAGS+=-I${.CURDIR}
|
|
SRCS= docmd.c expand.c lookup.c main.c rshrcmd.c server.c
|
|
OBJS+= gram.o
|
|
CLEANFILES=y.tab.h
|
|
|
|
# To use the old method, which requires setuid-root and all the baggage and
|
|
# security holes that goes with it, uncomment:
|
|
# CFLAGS+= -DDIRECT_RCMD
|
|
# BINOWN= root
|
|
# BINMODE=4555
|
|
# INSTALLFLAGS=-fschg
|
|
|
|
.include <bsd.prog.mk>
|