[Simh] simh and tap device under linux

Jeremy Begg jeremy at vsm.com.au
Tue Aug 25 21:07:42 EDT 2009 

Hi,

Further to David Holland's response ...

>SSH is available for VAX/VMS, in the form of Process's TCPWARE product.

Process Software has *three* SSH-capable products for VAX/VMS:

 - TCPware
 - MultiNet
 - SSH for OpenVMS

TCPware and MultiNet are complete TCP/IP stacks which replace UCX (also
known as "TCP/IP Services for OpenVMS").  TCPware and MultiNet include
very capable SSH clients and servers.

"SSH for OpenVMS" is the SSH part of MultiNet extracted into a form which
allows it to run on a system running UCX.  If you *need* to run UCX for
some reason (Oracle support, maybe?) then "SSH for OpenVMS" is the only way
you'll be able to have SSH on your VAX.

Disclaimer: my company has a business relationship Process Software.

>However, depending on your underlying hardware, it can be pretty slow.
>
>(ie: 1.4Ghz is NOT enough.)

Probably very true, but I've only ever used it on real VAXes.  MultiNet's
SSH server seems to work fine on my VAXstation 4000/60.  Configuring it
(generating the permanent host keys) took ages while the poor old VAX ground
it's way through the math, but once that part is done the rest of it is fine
(for single sessions, anyway).

Regards,

        Jeremy Begg

  +---------------------------------------------------------+
  |            VSM Software Services Pty. Ltd.              |
  |                 http://www.vsm.com.au/                  |
  |       "OpenVMS Systems Management & Programming"        |
  |---------------------------------------------------------|
  | P.O.Box 402, Walkerville, |  E-Mail:  jeremy at vsm.com.au |
  | South Australia 5081      |   Phone:  +61 8 8221 5188   |
  |---------------------------|  Mobile:  0414 422 947      |
  |  A.C.N. 068 409 156       |     FAX:  +61 8 8221 7199   |
  +---------------------------------------------------------+


>On Tue, Aug 25, 2009 at 1:15 PM, Edward Berry<eaberry1 at pacbell.net> wrote:
>> If the machine is always on and networked
>> (as opposed to each user turns it on to run simh), you can
>> run simh yourself as superuser and have others telnet in from nearby
>> (same subnet) machines. The ^E command will be unavailable,
>> the users will be restricted to commands of the simulated OS.
>>
>> I like to start simh in a "screen", then detach the screen if I need to
>> leave or logoff.
>>
>> Since telnet sends cleartext passwords, allow telnet only from local
>> subnet where you are sure there are no password sniffers. Or is SSH
>> availabe for vms?
>>
>> Ed
>>
>> Howard M. Harte wrote:
>>> Those techniques will work, but the user will be able to CTRL/E and '!
>>> sh' to get a root shell.  You might want to disable the '!' command.
>>>
>>> -Howard
>>>
>>>
>>> On Aug 24, 2009, at 9:44 AM, Seth Morabito <sethm at loomcom.com> wrote:
>>>
>>>> On Mon, Aug 24, 2009 at 12:08 AM, <ttmrichter at gmail.com> wrote:
>>>>> Now the million-dollar question: is there any way to set this up so
>>>>> that I
>>>>> don't have to give someone full-on God Mode privileges to run the
>>>>> emulator
>>>>> properly? I'm not so sure I want to give this thing access to
>>>>> everything on
>>>>> my system at this time.
>>>> There are two possible techniques. The first is changing the ownership
>>>> of the executable to 'root' and setting the suid bit. For example:
>>>>
>>>> % sudo chown root pdp11
>>>> % sudo chmod u+s pdp11
>>>>
>>>> This will allow anyone with rights to execute the program to run it as
>>>> the root user.
>>>>
>>>> The other technique works as long as you have 'sudo' installed. You
>>>> can add a line to your /etc/sudoers file to let a normal user (login
>>>> 'foobar') run the executable as root:
>>>>
>>>> foobar           ALL=NOPASSWD: /path/to/pdp11
>>>>
>>>> Then the user 'foobar' just has to type "sudo pdp11" to get it to run
>>>> with root privileges. Other users won't be able to, only 'foobar'.
>>>>
>>>> Both techniques are a security risk, but as they say, life involves
>>>> risk. :-) Only you can decide how much security trade-off you're
>>>> willing to live with.
>>>>
>>>> -Seth
>>>> _______________________________________________
>>>> Simh mailing list
>>>> Simh at trailing-edge.com
>>>> http://mailman.trailing-edge.com/mailman/listinfo/simh
>>>>
>>> _______________________________________________
>>> Simh mailing list
>>> Simh at trailing-edge.com
>>> http://mailman.trailing-edge.com/mailman/listinfo/simh
>>>
>>
>> _______________________________________________
>> Simh mailing list
>> Simh at trailing-edge.com
>> http://mailman.trailing-edge.com/mailman/listinfo/simh
>>
>_______________________________________________
>Simh mailing list
>Simh at trailing-edge.com
>http://mailman.trailing-edge.com/mailman/listinfo/simh

More information about the Simh mailing list