[ Thanks to Mike
Golvach for this link. ]
“Today we’re going to grind through our ‘Lazy Sunday’ post with
a quick script to update SSH keys network-wide, by using rsh (the
less secure of the two protocols). Once you’ve accomplished this
(or have already accomplished this) and are happy with your
network’s SSH setup, I’d suggest disabling rsh altogether. Then you
can move on to quickly setting up your SSH keys all over the
network, focus on maintaining the integrity of your sessions, if
you have issues with that, and even setting simple SCP routines to
help keep your network easy to manage.“My feeling is that, no matter what the circumstances (unless
they make it so you ‘have’ to use it), rsh should always be
disabled, no matter what version of Linux or Unix you’re running.
Certain software (like SunCluster) can experience very strange
issues if you don’t allow it. At least, up to version 3.1. I can
only afford to keep myself in the almost-very-best, after
all…”