Yep, under 10.3 client, I found the sshd service settings in the ssh
file located in the /etc/xinetd.d.directories. I think I can just
edit the ssh file directly or copy it over all the clients that need
it changed using ARD.
When ssh is enable the file reads as:
service ssh
{
disable = no
socket_type = stream
wait = no
user = root
server = /usr/libexec/sshd-keygen-wrapper
server_args = -i
groups = yes
flags = REUSE IPv6
session_create = yes
}
When it is disabled it reads as:
service ssh
{
disable = yes
socket_type = stream
wait = no
user = root
server = /usr/libexec/sshd-keygen-wrapper
server_args = -i
groups = yes
flags = REUSE IPv6
session_create = yes
}
Under 10.4 I think I will have to push down a new XML ssh file that
is in the xinetd.d directory.
After doing that do I have to run another command to tell the Xinetd
to reload the file and turn the service on or off?
Thanks,
Jeff
On Aug 31, 2005, at 9:34 PM, Dan Shoop wrote:
At 5:25 PM -0700 8/31/05, Jeff Chambers wrote:
Hi,
I have a simple question. I have a few 10.3 and 10.4 client
machines that I need to turn ssh off/on using the CLI. Is there a
command that I can run to turn this service on/off?
Depends on if it's Panther or Tiger as to what you have to do, but
disable it in xinetd or launchd respectively. You'll need to be
able to use an editor.
I got into the what I believe is the config file for it in Library/
Preferences/com.apple.sharing.firewall.plist. Do I just have to
edit this file and then bam it is enabled or disabled.
That isn't really what you want. That's the packet filter, the
service is still running.
Is there an easy way to edit these plist XML files using UNIX
commands from ARD.
Like an editor or plist editor?
--
-dhan
----------------------------------------------------------------------
--
Dan Shoop AIM:
iWiring
Systems & Networks Architect http://
www.iwiring.net/
email@hidden http://
www.ustsvs.com/
