[Penteseters Eye] Secure parallel execution tools (was: Unattended linux updates)

[jd.mubix at gmail.com (Rob Fuller)]

I've added [Pentesters Eye] to the subject as to not derail the main topic
of discussion. But this particular thread caught my eye.

These types of tools would be great in a pentest if you were able to get
credentials and wanted to try them out on a large base of systems with say,
SSH open via your nmap scan.

Are there Windows tools that do the same thing?

And which of the linux tools are preferred, and do they have to be
previously installed on the systems in which you execute

--
Rob Fuller | Mubix
Room362.com | Hak5.org | TheAcademyPro.com


On Tue, Jul 21, 2009 at 4:23 PM, Michael Douglas <mick at pauldotcom.com>wrote:

> rsudo is another such tool
> http://sourceforge.net/projects/rsudo/
>
> - Mick
>
> On Tue, Jul 21, 2009 at 8:31 AM, Steve
> Bernacki<pauldotcom at f.copacetic.net> wrote:
> > We currently use cfengine for configuration management, but I've been
> > looking for other tools to assist with ad-hoc parallel execution tasks
> > across multiple systems.   Someone mentioned "func" in the unattended
> > linux updates thread, which I've looked at before.  However, it
> > essentially opens up yet another remote execution vector that I'd need
> > to audit and justify separately from SSH and cfengine, which is
> > something I'd like to avoid.  Since we already have SSH keys deployed on
> > these systems, I'd like to take advantage of the tools we already have
> > in place.
> >
> > My research has turned up three options that sound interesting, and I'm
> > curious if anyone has had any experience (good or bad) with these tools,
> > or others like them:
> >
> > - Rgang
> >  http://fermitools.fnal.gov/abstracts/rgang/abstract.html
> >
> > - Rshall
> >  http://www.occam.com/tools/
> >
> > - Tentakel
> >  http://tentakel.biskalar.de/
> >
> > All three of these tools utilize SSH and support parallel command
> > execution.  I'm sure there are more out there as well.  Any comments or
> > insight would be appreciated.
> >
> > Best regards,
> > Steve
> >
> > --
> > On August 1st and 2nd, I will be bicycling 192 miles to support the
> > Dana Farber Cancer Institute.  Learn more about the ride and please
> > consider sponsoring me; visit http://sponsorsteve.com for more details!
> >
> > _______________________________________________
> > Pauldotcom mailing list
> > Pauldotcom at mail.pauldotcom.com
> > http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
> > Main Web Site: http://pauldotcom.com
> _______________________________________________
> Pauldotcom mailing list
> Pauldotcom at mail.pauldotcom.com
> http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
> Main Web Site: http://pauldotcom.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mail.pauldotcom.com/pipermail/pauldotcom/attachments/20090721/f9bc26f2/attachment.htm