ssh and sudo

Wed Nov 17 03:13:06 UTC 2010

On Tue, Nov 16, 2010 at 6:27 PM, Arnaud G <lepelerin2002 at yahoo.com> wrote:
>
> On Tue, Nov 16, 2010 at 5:28 PM, Arnaud G <lepelerin2002 at yahoo.com> wrote:
>> Hi,
>>
>> Here is what I would like to do in my environment
>>
>> env: all machines running Ubuntu 10.04 LTS.
>> all machines running openssh-server and openssh-client
>>
>> User "A" on machine "a" and user "B" on machine "b", user "C" on machine
>> "c"
>> and so forth ...
>>
>> First I want to be able to ssh to "b" from "a" without the remote ("B")
>> user
>> password. So login as "B" on "b" from "a" with "A".
>> I was successful setting that up following these instructions:
>>
>> http://linuxproblem.org/art_9.html
>>
>> Now what I want to do is to use sudo on "b" as "B" with "A" 's password or
>> no password. I would prefer to use my ssh key for that.
>>
>> Setting up the sudoers file with the NOPASSWD option is not an option. I
>> want user "B" to keep her sudo password.
>>
>> I have been trying many things I could find on the web, but to no
>> availability.
>> Every time I try to sudo on "b", it asks for "B" 's password.
>>
>> Any chance that it can be done. If yes could you point me in the right
>> direction.
>>
>> But first is it the best way to do it.
>> Thank you in advance for sharing your knowledge.
>>
>> A
>>
>>
> From: Chris MacDonald <chris at fourthandvine.com>
> To: "Ubuntu user technical support, not for general discussions"
> <ubuntu-users at lists.ubuntu.com>
> Sent: Tue, November 16, 2010 9:40:25 PM
> Subject: Re: ssh and sudo
>
>>Someone here might be able to describe a setup wherein this would work
>>solely with ssh and sudo being used, but have you considered nis?
>>Centralizing authentication would make parts of what you're wanting to
>>do a lot easier.
>>
>>Chris
>>
>
>
> Tx Chris, but what do you mean exactly by centralized authentication? The
> situation here is that I maintaining my converted friends machines (6 at the
> moment but soon a couple more). I made them switch from Vista to Ubuntu. the
> deal we agreed upon is "OK we go with Ubuntu but you maintain the machine".
> Having machine being located remotely how can I have centralized
> authentication. I am ready to try a better solution than mine. I am open to
> any suggestion that would make my life easier.
>
> A
>

Ok then it sounds like nis might not be the best solution for you. If
it was all on a LAN and everyone (or most people) needed access to
most of the machines nis night make sense, but if it's just you, it's
probably more work than it's worth. If you're just maintaining the
machines, what's wrong with creating an account for yourself on all of
the machines and giving yourself sudo privileges? What would you
envision yourself doing on the remote machines that wouldn't work with
that setup?

Chris

>
> --
> ubuntu-users mailing list
> ubuntu-users at lists.ubuntu.com
> Modify settings or unsubscribe at:
> https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
>
>