mersenneforum.org  

Go Back   mersenneforum.org > Extra Stuff > Linux

Reply
 
Thread Tools
Old 2021-08-18, 12:55   #12
kruoli
 
kruoli's Avatar
 
"Oliver"
Sep 2017
Porta Westfalica, DE

28·3 Posts
Default

Who is in for sudo -i?
kruoli is online now   Reply With Quote
Old 2021-08-18, 22:45   #13
chalsall
If I May
 
chalsall's Avatar
 
"Chris Halsall"
Sep 2002
Barbados

100111010001002 Posts
Default

Quote:
Originally Posted by kruoli View Post
Who is in for sudo -i?
My nominal is sudo su -. Similar result. Bash is presumed; the serious can work with anything.

Root log-in is of course forbidden except at a serial console. Don't presume the kit can be physically reached.

Reflecting off of some very cool tunes recently shared, please consider listening to a bit of Laurie Anderson.
chalsall is online now   Reply With Quote
Old 2021-08-19, 08:30   #14
xilman
Bamboozled!
 
xilman's Avatar
 
"π’‰Ίπ’ŒŒπ’‡·π’†·π’€­"
May 2003
Down not across

11×17×59 Posts
Default

Another approach I use is to put a SSH public key in /root/.ssh/authorized_keys and, as long as the network is up, root login is available from any machine which can provide the matching private key. I recognize that the network may be down, but it is a way of running programs as root.

This mechanism is used by a backuppc server to gain unfettered access to its clients' files which it needs to save and restore.
xilman is offline   Reply With Quote
Old 2021-08-19, 10:04   #15
paulunderwood
 
paulunderwood's Avatar
 
Sep 2002
Database er0rr

22·3·7·47 Posts
Default

Quote:
Originally Posted by xilman View Post
Another approach I use is to put a SSH public key in /root/.ssh/authorized_keys and, as long as the network is up, root login is available from any machine which can provide the matching private key. I recognize that the network may be down, but it is a way of running programs as root.

This mechanism is used by a backuppc server to gain unfettered access to its clients' files which it needs to save and restore.
You may also add AllowUsers root@<IP addr> in your /etc/ssh/sshd_config files (and run systemctl restart ssh to read the new config files). Further, being even more paranoid, you may also use RSA keys.

Last fiddled with by paulunderwood on 2021-08-19 at 10:05
paulunderwood is online now   Reply With Quote
Reply

Thread Tools


Similar Threads
Thread Thread Starter Forum Replies Last Post
Debian 10 "Buster" released paulunderwood Linux 5 2019-09-07 12:59
Debian PSA Xyzzy Linux 12 2017-06-19 04:15
Packaging Mlucas for Debian ewmayer Linux 7 2015-05-28 06:14
Linux (debian/grub) help LaurV Linux 10 2015-04-24 15:39
Troubles with Debian Netinst ET_ Linux 4 2007-03-13 20:41

All times are UTC. The time now is 21:45.


Tue Dec 7 21:45:26 UTC 2021 up 137 days, 16:14, 1 user, load averages: 1.63, 1.36, 1.33

Powered by vBulletin® Version 3.8.11
Copyright ©2000 - 2021, Jelsoft Enterprises Ltd.

This forum has received and complied with 0 (zero) government requests for information.

Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation License, Version 1.2 or any later version published by the Free Software Foundation.
A copy of the license is included in the FAQ.