[Gllug] sudo authentication against ssh key
Minty
mintywalker at gmail.com
Mon Jul 20 16:46:29 UTC 2009
On Mon, Jul 20, 2009 at 2:20 PM, - Tethys<tethys at gmail.com> wrote:
> On Mon, Jul 20, 2009 at 1:19 PM, Minty<mintywalker at gmail.com> wrote:
>
>> I'm want to allow a user password-less sudo (to named commands
>> controlled via /etc/sudoers) if and only if they've connected via ssh
>> using their key.
>>
>> [...]
>>
>> Or am I approaching this via the wrong angle?
>
> The only wrongness I can see is assuming that having them ssh in with
> a keypair is more secure than having them type their password in.
Noted, although in our current case, this is an assumption we have
considered and opted to run with with, I think, our eyes open & sober.
Thanks for the input - Bruce's suggestion seems mighty clever and
likely workable for what we wanted.
gllug++
--
Gllug mailing list - Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug
More information about the GLLUG
mailing list