Problems with Sudo

Michael R. Head burner at
Thu Mar 15 18:28:28 UTC 2007

On Thu, 2007-03-15 at 08:16 -0400, Arthur H. Johnson II wrote:
> Technically, I have two SSH daemons running.  The one exposed to the
> internet, running on port 9988, is configured to only allow "remoteuser"
> to log in.
> >From remote host to
> ssh -p 9988 remoteuser at
> ssh localuser at localhost
> At that point, I'm on an entirely new tty.  According to "w" and "who"
> I'm running as "localuser".
> As far as "why" its a personal security policy I've used since the
> beginning.  An alternate SSH server operating on an alternate port,
> where only one unprivileged account is allowed to log in.  From there,
> su to switch to real user. 

How do you SCP to/from the machine?

To make your life easier, you might consider the ProxyCommand in
your .ssh/config files.

Also, you might consider port knocking if you're feeling very security

> > 
> -- 
> Arthur H. Johnson II <arthur at>
Michael R. Head <burner at>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3189 bytes
Desc: not available
URL: <>

More information about the ubuntu-users mailing list