


   SPX Version 2.2                                                     fcp(1)



   Name
     fcp - remote file copy command with SPX authentication

   Syntax
     fcp [-p] _f_i_l_e_1 _f_i_l_e_2
     fcp [-r] [-p] _f_i_l_e... _d_i_r_e_c_t_o_r_y

   Description
     The _f_c_p command copies files between machines.  Each _f_i_l_e or _d_i_r_e_c_t_o_r_y
     argument is either a remote file name of the form [username@]rhost:path,
     or a local file name.  If the username argument is specified in the
     remote file name, then the file copy is performed based on permissions
     granted by the remote user.  Local file names do not contain colons (:)
     or backslashes (\) before colons.

     Note that the _f_c_p command refuses to copy a file onto itself.

     If _p_a_t_h is not a full path name, it is interpreted relative to your
     login directory on _r_h_o_s_t.  To ensure that the metacharacters are inter-
     preted remotely, a remote host's _p_a_t_h can be quoted by either using a
     backslash (\) before a single character, or enclosing character strings
     in double (") or single (') quotes.

     By default, the mode and owner of _f_i_l_e_2 are preserved if _f_i_l_e_2 already
     exists.  Otherwise, the mode of the source file modified by _u_m_a_s_k(2) on
     the destination host is used.

     Each account has a file ._s_p_h_i_n_x that contains a list of X.500 global
     principals who are allowed access to the account.  To avoid security
     problems, the ._s_p_h_i_n_x file must be owned by either the remote user or
     root and it shouldn't be a symbolic link.  In addition, the file must
     not be world-writable.

     Note that the following ACL entries are equivalent for a user principal
     in the default domain "/C=US/O=Digital/OU=LKG".

          "/C=US/O=Digital/OU=LKG/OU=Users/CN=John Smith"

          "OU=Users/CN=John Smith"

     However, it is recommended that fully qualified principal names be
     placed in ACLs to avoid ambiguity.  Also, if a principal name contains a
     'space' character, the name must be double-quoted.

     If the _f_c_p application is built with the SPX_CHALLENGE variable defined,
     then _f_c_p can be used to securely gain access to the privileged "root"
     account on a remote host.  Potential users who would like privileged
     access must have their X.500 name in the ACL entry file /._s_p_h_i_n_x and
     they need to supply their own password to prove that they are an
     interactive user.  Note that the password is not sent in any form over
     the wire.




   Digital Equipment Corporation                                            1






   fcp(1)                                                     SPX Version 2.2


     The _f_c_p command always performs mutual authentication and no delegation.

   Options

     -p   Preserves the modification times and modes of the source files in
          its copies, ignoring the _u_m_a_s_k.

     -r   Copies files in all subdirectories recursively, if the file to be
          copied is a directory.  In this case the destination must be a
          directory.

   Files
     /etc/cdc.conf /tmp/claimant__n_a_m_e ~/.sphinx

   See Also

     spx(1), spxdestroy(1), spxlist(1), spxinit(1), flogin(1), fsh(1)







































   2                                            Digital Equipment Corporation


99