ssh and tty and sudoers file.

Knapp magick.crow at gmail.com
Wed Aug 20 05:38:55 UTC 2008


On Wed, Aug 20, 2008 at 1:56 AM, Brian McKee <brian.mckee at gmail.com> wrote:

> On Tue, Aug 19, 2008 at 4:04 PM, Knapp <magick.crow at gmail.com> wrote:
> > Don't mean to be mean but the subject of this email IS ssh and tty and
> > sudoers file.
> > SSH is a server.
> > Thus, when I am at home with my computer I want to use sudo but when I am
> at
> > work I really don't need it or does anyone else that might hack into my
> my
> > computer from a remote place thus blocking all people that are not at my
> > keyboard is a good idea.
> >
> > Also this computer does have about 10 others that use it. Not a lot but
> > enough to make it sort of public.
>
> Hi Douglas
>
> I think I'm being dense here.  Please, let me know why my suggestion
> of blocking the users in the sudo group from using the ssh server does
> not fufill your needs?  That restricts sudo to the console which I
> thought was the goal.   Or are you trying to make it 'location aware?'
> e.g. you can only sudo when your computer is on a certain network?
>
> Brian
>


I like your suggestion and it would work but it would mean that I would need
2 accounts as would all the other people that might need to use sudo. This
is ok but not perfect because as you said it can be limited based on
location.

So what I would like is for the computer to know when I am at the home
keyboard and then allow sudo but not at any other time. Perhpas this is the
perfectionist in me cominng out but it also mean less users/passwords for
someone to crack.

Thanks,

-- 
Douglas E Knapp

http://sf-journey-creations.wikispot.org/Front_Page
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ubuntu.com/archives/ubuntu-users/attachments/20080820/27ab5091/attachment.html>


More information about the ubuntu-users mailing list