sudo and ssh pass phrase
Web Server forum
Back To The Forum Home!Search!Private Messaging System
Visit your User Control Panel!Register your FREE username now!Visit Our Calendar!View the Member List!Faqs!Search our Forums!

Web Server Talk Web Server Talk > Unix and Linux reviews > Free Unix support > Unix administration > sudo and ssh pass phrase




  Last Thread   Next Thread Next
  Show Printable Version Email this Page Subscribe to this Thread      Post New Thread    Post A Reply      

    sudo and ssh pass phrase  
ctippur@gmail.com


View Ip Address Report This Message To A Moderator Edit/Delete Message


 
06-08-05 07:49 AM

All,

I am not sure where I need to post this question.
We are using ssh key based authentication for logging in.
>From what I know, SUDO uses password based authentication method. Is
there anyway  we can make SUDO work with SSH keybased authentication
method.
Note: As this is a secure environment, we have made the login as "NP"
indicating that this ID is locked.
I appreciate any input.

Thanks,
Shekar




[ Post a follow-up to this message ]



    Re: sudo and ssh pass phrase  
Dave Hinz


View Ip Address Report This Message To A Moderator Edit/Delete Message


 
06-08-05 10:58 PM

On 7 Jun 2005 19:26:47 -0700, ctippur@gmail.com <ctippur@gmail.com> wrote:
> All,
>
> I am not sure where I need to post this question.
> We are using ssh key based authentication for logging in. 
> there anyway  we can make SUDO work with SSH keybased authentication
> method.
> Note: As this is a secure environment, we have made the login as "NP"
> indicating that this ID is locked.
> I appreciate any input.

If you're asking what I think you're asking... this should work:
ssh user@host "sudo command"
...as long as you have "command" configured in the sudoers file as
needing no password for "user".  If that's not acceptable, or not what
you're asking, then please give an example.

Dave Hinz




[ Post a follow-up to this message ]



    Re: sudo and ssh pass phrase  
Jeremiah DeWitt Weiner


View Ip Address Report This Message To A Moderator Edit/Delete Message


 
06-08-05 10:58 PM

ctippur@gmail.com wrote:
>From what I know, SUDO uses password based authentication method. Is
> there anyway  we can make SUDO work with SSH keybased authentication
> method.

I don't think so, at least not without changing the sudo source
code.  What you could do is set up /etc/sudoers so that users don't have
to type in their password at all, if that's acceptable to you.  I also
see that sudo (at least on my systems) is linked against PAM, so maybe
you could do something with that...

I'm curious, though: what exactly do you mean when you say you want
sudo to "work with SSH keybased authentication method"?  How exactly do
you picture this working?  Under what circumstances would the sudo
attempt be allowed or disallowed?


> Note: As this is a secure environment, we have made the login as "NP"
> indicating that this ID is locked.

Is there some particular reason you don't use passwords at all?  You
could always give the users passwords, but set up SSH so that it won't
allow passwords for login purposes (look for "PasswordAuthentication" in
the sshd_config man page).

JDW




[ Post a follow-up to this message ]



    Sponsored Links  




 



   All times are GMT. The time now is 10:49 AM.      Post New Thread    Post A Reply      
  Last Thread   Next Thread Next


Most Popular forums 
Apache Server MySQL for Windows Sendmail
Red Hat Networking SuSe Linux Debian Linux
FreeBSD administration Sun Solaris administration Unix Shell programming
WebSphere Portal Server Exchange 2000 administration PostgreSQL administration
Linux Security Computer Security Firewalls

Forum Jump:
Rate This Thread:

Forum Rules:
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts 		HTML code is OFF
vB code is ON
Smilies are ON
[IMG] code is OFF
 
Medical and Health forum | Computer Games Reviews | Graphics design forum

Back To The Top
Home | Usercp | Faq | Register