Discussion:
Remote username from port number?
(too old to reply)
Selden Ball
2006-10-17 21:46:48 UTC
Permalink
Given the information provided in SYS$REM_ID
(remote ip address and port number),
what's the best way to determine the username associated with the telnet
(or other tcp/ip) client, when that client software is running on another
member of the same VMS cluster?

I have to believe that this is "an already solved problem."

All cluster members are running Multinet, of course.

So far today, what I've come up with is the following:

From the IP address one can determine the remote cluster decnet node name
using a table lookup.

One could then use rsh or equivalent to the remote node to get the output of
MULTINET SHOW/CONNECTIONS=PID
and search that list for the port number to obtain the owning process id.

One could then search the output of
SHOW USERS/FULL/NODE=whatever
for the process id and obtain the associated username.

But that's gross :-)

Thanks for whatever help you can provide.

Selden
Geoff Bryant
2006-10-17 22:34:46 UTC
Permalink
Not giving much thought to this, but...
Post by Selden Ball
Given the information provided in SYS$REM_ID
(remote ip address and port number),
what's the best way to determine the username associated with the telnet
(or other tcp/ip) client, when that client software is running on another
member of the same VMS cluster?
I have to believe that this is "an already solved problem."
All cluster members are running Multinet, of course.
From the IP address one can determine the remote cluster decnet node name
using a table lookup.
One could then use rsh or equivalent to the remote node to get the output of
MULTINET SHOW/CONNECTIONS=PID
and search that list for the port number to obtain the owning process id.
One could then search the output of
SHOW USERS/FULL/NODE=whatever
for the process id and obtain the associated username.
For the last parrt there is f$getjpi(pid,"username") which will work in a
cluster across nodea.
Post by Selden Ball
But that's gross :-)
Thanks for whatever help you can provide.
Selden
-------------------------------------------------------------
Geoff Bryant ***@process.com
TCPware/MultiNet/PMDF/SSH/PreciseMail Engineering
Process Software http://www.process.com/
959 Concord St.
Framingham, MA 01701 USA
Selden E Ball Jr
2006-10-17 22:40:26 UTC
Permalink
Post by Geoff Bryant
Not giving much thought to this, but...
[...]
Post by Geoff Bryant
Post by Selden Ball
One could then search the output of
SHOW USERS/FULL/NODE=whatever
for the process id and obtain the associated username.
For the last parrt there is f$getjpi(pid,"username") which will work in a
cluster across nodea.
Thanks!

But there's still the problem of getting the port to pid association.

s.
Ken Connelly
2006-10-18 02:21:23 UTC
Permalink
Check out user_access.c in the multinet examples directory
(multinet_root:[multinet.examples]).

-ken
Post by Selden Ball
Given the information provided in SYS$REM_ID
(remote ip address and port number),
what's the best way to determine the username associated with the telnet
(or other tcp/ip) client, when that client software is running on another
member of the same VMS cluster?
I have to believe that this is "an already solved problem."
All cluster members are running Multinet, of course.
From the IP address one can determine the remote cluster decnet node name
using a table lookup.
One could then use rsh or equivalent to the remote node to get the output of
MULTINET SHOW/CONNECTIONS=PID
and search that list for the port number to obtain the owning process id.
One could then search the output of
SHOW USERS/FULL/NODE=whatever
for the process id and obtain the associated username.
But that's gross :-)
Thanks for whatever help you can provide.
Selden
Ken Connelly
2006-10-19 12:45:03 UTC
Permalink
Can that updated example source be made available on the Process web site?

- ken
Note that the user_access.c example needs updating for MultiNet 5.0 and later. The code assumes a BSD 4.3 format sockaddr, and it could have either a BSD 4.3 or BSD 4.4 format with MultiNet 5.0 and later. We have updated the example for MultiNet 5.2.
-----Original Message-----
Sent: Tuesday, October 17, 2006 10:21 PM
Subject: Re: Remote username from port number?
Check out user_access.c in the multinet examples directory
(multinet_root:[multinet.examples]).
-ken
Post by Selden Ball
Given the information provided in SYS$REM_ID
(remote ip address and port number),
what's the best way to determine the username associated with the telnet
(or other tcp/ip) client, when that client software is running on another
member of the same VMS cluster?
I have to believe that this is "an already solved problem."
All cluster members are running Multinet, of course.
From the IP address one can determine the remote cluster decnet node name
using a table lookup.
One could then use rsh or equivalent to the remote node to get the output of
MULTINET SHOW/CONNECTIONS=PID
and search that list for the port number to obtain the owning process id.
One could then search the output of
SHOW USERS/FULL/NODE=whatever
for the process id and obtain the associated username.
But that's gross :-)
Thanks for whatever help you can provide.
Selden
--
- Ken
=================================================================
Ken Connelly Associate Director, Security and Systems
ITS Network Services University of Northern Iowa
email: ***@uni.edu p: (319) 273-5850 f: (319) 273-7373
It's much more important to know what you don't know than what you do know!
Richard Whalen
2006-10-19 12:40:33 UTC
Permalink
Note that the user_access.c example needs updating for MultiNet 5.0 and later. The code assumes a BSD 4.3 format sockaddr, and it could have either a BSD 4.3 or BSD 4.4 format with MultiNet 5.0 and later. We have updated the example for MultiNet 5.2.

-----Original Message-----
From: Ken Connelly [mailto:***@uni.edu]
Sent: Tuesday, October 17, 2006 10:21 PM
To: info-***@process.com
Subject: Re: Remote username from port number?


Check out user_access.c in the multinet examples directory
(multinet_root:[multinet.examples]).

-ken
Post by Selden Ball
Given the information provided in SYS$REM_ID
(remote ip address and port number),
what's the best way to determine the username associated with the telnet
(or other tcp/ip) client, when that client software is running on another
member of the same VMS cluster?
I have to believe that this is "an already solved problem."
All cluster members are running Multinet, of course.
From the IP address one can determine the remote cluster decnet node name
using a table lookup.
One could then use rsh or equivalent to the remote node to get the output of
MULTINET SHOW/CONNECTIONS=PID
and search that list for the port number to obtain the owning process id.
One could then search the output of
SHOW USERS/FULL/NODE=whatever
for the process id and obtain the associated username.
But that's gross :-)
Thanks for whatever help you can provide.
Selden
Richard Whalen
2006-10-19 14:39:11 UTC
Permalink
The updated example can be obtained through anonymous FTP to ftp.multinet.process.com. CD to the patches directory, then CD to the multinet051 directory.

-----Original Message-----
From: Ken Connelly [mailto:***@uni.edu]
Sent: Thursday, October 19, 2006 8:45 AM
To: info-***@process.com
Subject: Re: Remote username from port number?


Can that updated example source be made available on the Process web site?

- ken
Note that the user_access.c example needs updating for MultiNet 5.0 and later. The code assumes a BSD 4.3 format sockaddr, and it could have either a BSD 4.3 or BSD 4.4 format with MultiNet 5.0 and later. We have updated the example for MultiNet 5.2.
-----Original Message-----
Sent: Tuesday, October 17, 2006 10:21 PM
Subject: Re: Remote username from port number?
Check out user_access.c in the multinet examples directory
(multinet_root:[multinet.examples]).
-ken
Post by Selden Ball
Given the information provided in SYS$REM_ID
(remote ip address and port number),
what's the best way to determine the username associated with the telnet
(or other tcp/ip) client, when that client software is running on another
member of the same VMS cluster?
I have to believe that this is "an already solved problem."
All cluster members are running Multinet, of course.
From the IP address one can determine the remote cluster decnet node name
using a table lookup.
One could then use rsh or equivalent to the remote node to get the output of
MULTINET SHOW/CONNECTIONS=PID
and search that list for the port number to obtain the owning process id.
One could then search the output of
SHOW USERS/FULL/NODE=whatever
for the process id and obtain the associated username.
But that's gross :-)
Thanks for whatever help you can provide.
Selden
--
- Ken
=================================================================
Ken Connelly Associate Director, Security and Systems
ITS Network Services University of Northern Iowa
email: ***@uni.edu p: (319) 273-5850 f: (319) 273-7373
It's much more important to know what you don't know than what you do know!
Loading...