LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
Reload this Page Running sudo with pam.d
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
LinkBack Search this Thread
Old 05-04-2008, 11:39 PM   #1
vwvr9
Member
 
Registered: Feb 2005
Distribution: OpenSuse 10.1 / Centos 4.4
Posts: 60

Rep: Reputation: 15
Running sudo with pam.d

Hi guys,

Need some advice.

I'm playing around with centralizing my Linux logins. Currently I have pam.d/ssh setup to reference a list file over nfs. This allows me to control who can and can't login to my boxes from a central location.

My next step is to sudo enable those accounts. Anyone done any work similar to this before? Any advice is much appreciated.
 
Old 05-05-2008, 03:13 AM   #2
abefroman
Senior Member
 
Registered: Feb 2004
Location: Chicago
Distribution: CentOS w/Cpanel
Posts: 1,134

Rep: Reputation: 51
Have you configured the sudo file already?

visudo

and if you don't want them to type a password when they type
sudo /bin/su
you can use !authenticate to the default specification
 
Old 05-05-2008, 10:19 PM   #3
sundialsvcs
Senior Member
 
Registered: Feb 2004
Location: SE Tennessee, USA
Distribution: Gentoo, LFS
Posts: 3,685

Rep: Reputation: 330Reputation: 330Reputation: 330Reputation: 330
I do not consider "an NFS-shared list" to be in any way secure.

Consider using OpenLDAP or a similar shared-security server protocol of known robustness. These will allow you to efficiently administer multiple systems .. including dissimilar types of systems.

The mechanism for handling this authorization on your Linux box will still be PAM, in the sense that Linux asks PAM a question and PAM applies its rules to get an answer. But the ruleset will be different: perhaps in addition to other authentication methods, PAM will query LDAP.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are Off
Pingbacks are On
Refbacks are Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Running pppd with sudo alish Linux - Security 0 10-08-2007 07:44 PM
ubuntu - running sudo shell script from php mitilma Linux - Security 3 06-14-2007 01:52 AM
LXer: The Ultimate Sudo FAQ — To Sudo Or Not To Sudo? LXer Syndicated Linux News 0 02-25-2007 05:01 PM
Lots of errors when running an app with sudo bruno321 Ubuntu 2 02-23-2007 04:21 AM
Strange PAM/sudo problem (SLES9) chort Suse/Novell 3 01-05-2006 04:45 PM


All times are GMT -5. The time now is 11:21 AM.

Contact Us - Advertising Info - Rules - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
 
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: @linuxquestions
Open Source Consulting | Domain Registration