[Info-vax] DECnet V proxy problem...

VAXman- at SendSpamHere.ORG VAXman- at SendSpamHere.ORG
Thu Mar 12 12:09:16 EDT 2009 

In article <f069e6b3-f826-4043-b040-472bb116b5fd at j38g2000yqa.googlegroups.com>, etmsreec at yahoo.co.uk writes:
>On 12 Mar, 12:12, VAXman-  @SendSpamHere.ORG wrote:
>> In article <bc42fe28-ebad-47f9-9668-4a8303de2... at 13g2000yql.googlegroups.=
>com>, etmsr... at yahoo.co.uk writes:
>>
>>
>>
>>
>>
>> >On 11 Mar, 20:01, VAXman- =A0 at SendSpamHere.ORG wrote:
>> >> In article <00008802$0$2141$c3e8... at news.astraweb.com>, JF Mezei <jfme=
>zei=3D
>> >..spam... at vaxination.ca> writes:
>>
>> >> >VAXman- @SendSpamHere.ORG wrote:
>> >> >> I don't know why but the following no longer functions:
>>
>> >> >> HERE$ DIR HERE::
>> >> >> ... or ...
>> >> >> HERE$ DIR 0::
>>
>> >> >> I can do:
>>
>> >> >> HERE$ DIR THERE::
>>
>> >> >Re-install the OS and reboot :-)
>>
>> >> Thank you for that sage advice, Bill Gates. ;)
>>
>> >> >are you able do do:
>>
>> >> >DIR HERE"user pass":: ???
>>
>> >> From HERE:: I can do $ DIR HERE"username password":: successfully.
>>
>> >> >and more importantly:
>>
>> >> >THERE$ =3DA0DIR HERE::
>> >> >THERE$ =3DA0DIR HERE"user pass"::
>>
>> >> From nodes NOT HERE ;) I have no problem with proxy access. =3DA0It is=
> just
>>
>> >> HERE$ DIR 0::
>> >> ... or ...
>> >> HERE$ DIR HERE::
>>
>> >> that is problematic.
>>
>> >> Also, HERE$ DIR THERE::HERE:: works. =3DA0It's as if the remote name i=
>s not
>> >> getting passed so that the proxy =3DA0HERE::* */DEFAULT is invoked.
>>
>> >> --
>> >> VAXman- A Bored Certified VMS Kernel Mode Hacker =3DA0 =3DA0VAXman(at)=
>TMESIS(=3D
>> >dot)ORG
>>
>> >> =3DA0http://www.quirkfactory.com/popart/asskey/eqn2.png
>>
>> >> =3DA0 "Well my son, life is like a beanstalk, isn't it?"
>>
>> >I'd look at the format of the intrusion records and note any that have
>> >the node number rather than the node name. =A0this would indicate that
>> >the system isn't registered in the local address tower so the local
>> >system doesn't know what or who it is. =A0If the proxy records in the
>>
>> I've changed the node names in these outputs but here is what I see
>> after entering $ DIRECTORY 0::
>>
>> HERE$: SHOW INTRUSION
>> Intrusion =A0 =A0 =A0 Type =A0 =A0 =A0 Count =A0 =A0 =A0 =A0Expiration =
>=A0 =A0 =A0 =A0 Source
>> --------- =A0 =A0 =A0 ---- =A0 =A0 =A0 ----- =A0 =A0 =A0 =A0---------- =
>=A0 =A0 =A0 =A0 ------
>> =A0 =A0NETWORK =A0 =A0 =A0SUSPECT =A0 =A0 =A0 1 =A0 12-MAR-2009 06:58:16.=
>37 =A0LOCAL:.HERE::SYSTEM
>>
>> I delete these as soon as they occur.
>>
>> HERE$ MCR DECNET_REGISTER
>> =A0 1 - Show information about registered node names
>> =A0 :
>> =A0 :
>> * Directory service: LocalFile
>> * Node name or address: 1.1020
>> * Display format: Brief
>> * Output file:
>> =A0 :
>> =A0 :
>> Directory Service: Local name file
>>
>> Node name: =A0 =A0 =A0 =A0 LOCAL:.HERE
>> Phase IV synonym: =A0HERE
>> Node address: =A0 =A0 =A049::00-01:AA-00-04-00-FC-07:20 (1.1020)
>> Node address: =A0 =A0 =A049::00-01:AA-00-04-00-FC-07:21 (1.1020)
>>
>> >proxy database give a node name but the local system doesn't recognise
>> >the nodename, it won't allow access.
>>
>> HERE$ MCR AUTHORIZE
>> UAF> SHOW/PROXY HERE::*
>> LOCAL:.HERE::*
>> =A0 =A0 * (D)
>>
>> >If the user accounts are the same on all systems, you could try adding
>> >a proxy of *::* */default temporarily and make sure that proxy access
>> >as a whole is working.
>>
>> *::* */DEFAULT was tried before you mentioned it here. =A0
>>
>> THERE$ DIRECTORY HERE:: =A0(*works*)
>> HERE$ DIRECTORY THERE:: =A0(*works*)
>> HERE$ DIRECTORY HERE:: =A0(*fails*)
>>
>> Weird. =A0Anyway, I have other things I need to get sorted out before nex=
>t
>> week, so this issue will have to be back-burnered until some future date.
>> --
>> VAXman- A Bored Certified VMS Kernel Mode Hacker =A0 =A0VAXman(at)TMESIS(=
>dot)ORG
>>
>> =A0http://www.quirkfactory.com/popart/asskey/eqn2.png
>>
>> =A0 "Well my son, life is like a beanstalk, isn't it?"- Hide quoted text =
>-
>>
>> - Show quoted text -
>
>does a SET HOST HERE work from HERE:: ???

Yes.  Well, it gets me to the logging prompts.  I do not permit REMOTE
access.  No SET HOST or TELNET -- only ssh.

-- 
VAXman- A Bored Certified VMS Kernel Mode Hacker    VAXman(at)TMESIS(dot)ORG

  http://www.quirkfactory.com/popart/asskey/eqn2.png
  
  "Well my son, life is like a beanstalk, isn't it?"

More information about the Info-vax mailing list