Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Secure-Shell
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: using ssh authentication with sudo

from [Daniel Mitton] Network Security [Permanent Link]
Subject: Re: using ssh authentication with sudo
Date: Tue, 22 May 2007 15:51:31 -0700 (PDT) 
If you just want an authenticated user (via ssh or
otherwise) to be able to use certain sudo command(s),
can't you just use the nopassword sudo option?




there is a number of ways I could be missing 
something obvious so I apologize in 
advance.

My idea is should be possible to grant sudo access 
with your ssh credentials. 
the logic is that once the server has granted access
to a client based on its 
ssh keys, it should be possible to use the same 
authentication to grant sudo 
privileges.  After all, if a key pair is good enough
to get you into one 
machine, why isn't it good enough to grant you the 
full Monty?

Assuming that it is, how could a local program 
determine that the process it is 
running in has done so via ssh key authentication. 
Would it query the agent 
directly?  Would it be able to use agent 
forwarding?  Or is this a really bad 
idea that I should just give up on?

---eric




       
____________________________________________________________________________________Be
 a better Heartthrob. Get better relationship answers from someone who knows. 
Yahoo! Answers - Check it out. 
http://answers.yahoo.com/dir/?link=list&sid=396545433
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: using ssh authentication with sudo, Justin Alcorn
Next by Date:  Re: using ssh authentication with sudo, Jeremy C. Reed
Previous by Thread:  Re: using ssh authentication with sudo, Lamont Granquist
Next by Thread:  SFTP and umask, Drew Boone
Indexes:  [Date] [Thread] [Top] [All Lists]