Public
- Public
- Groups
- Popular
- People

Conversation

Notices

drymer #en proceso de migrar (drymervieja@quitter.se)'s status on Tuesday, 28-Feb-2017 13:00:43 UTC drymer #en proceso de migrar
- Moon-doggy cambycambs
- Hallå Kitteh
@clacke Not sure if I understand. Do you mean that sudo can be limited to certain commands? @camby

In conversation Tuesday, 28-Feb-2017 13:00:43 UTC from quitter.se permalink
- drymer #en proceso de migrar (drymervieja@quitter.se)'s status on Tuesday, 28-Feb-2017 08:34:01 UTC drymer #en proceso de migrar
  
  What you people thing about using sudo without password for automating purposes (like ansible)?
  
  In conversation Tuesday, 28-Feb-2017 08:34:01 UTC permalink
- drymer #en proceso de migrar (drymervieja@quitter.se)'s status on Tuesday, 28-Feb-2017 08:38:31 UTC drymer #en proceso de migrar
  in reply to
  - System Administrators
  cc !sysadmin
  
  In conversation Tuesday, 28-Feb-2017 08:38:31 UTC permalink
- drymer #en proceso de migrar (drymervieja@quitter.se)'s status on Tuesday, 28-Feb-2017 08:40:12 UTC drymer #en proceso de migrar
  - Hallå Kitteh
  @clacke That's what I was thinking. I don't like it, since it's another security layer. But ansible is not useful if you don't do it.
  
  In conversation Tuesday, 28-Feb-2017 08:40:12 UTC permalink
- drymer #en proceso de migrar (drymervieja@quitter.se)'s status on Tuesday, 28-Feb-2017 08:42:18 UTC drymer #en proceso de migrar
  - Moon-doggy cambycambs
  - Hallå Kitteh
  @camby Yes, but it's not about commands. What if every server has different passwords? Having to type them all it's a lot of effort. @clacke
  
  In conversation Tuesday, 28-Feb-2017 08:42:18 UTC permalink
- Christmas Personified as a Catgirl (moonman@shitposter.club)'s status on Tuesday, 28-Feb-2017 08:45:29 UTC Christmas Personified as a Catgirl
  in reply to
  
  @drymer I have a separate user for that that is only used for ansible/deployment, that can sudo without password.
  
  In conversation Tuesday, 28-Feb-2017 08:45:29 UTC permalink
  
  drymer #en proceso de migrar repeated this.
- drymer #en proceso de migrar (drymervieja@quitter.se)'s status on Tuesday, 28-Feb-2017 08:50:05 UTC drymer #en proceso de migrar
  - Christmas Personified as a Catgirl
  @moonman Yeah, that's what I was looking for. Match use ansible and PasswordAuthentication no.
  
  In conversation Tuesday, 28-Feb-2017 08:50:05 UTC permalink
- drymer #en proceso de migrar (drymervieja@quitter.se)'s status on Tuesday, 28-Feb-2017 12:38:02 UTC drymer #en proceso de migrar
  - Moon-doggy cambycambs
  - Hallå Kitteh
  @clacke It's not that big. If someone is able to log in a server, it's pretty easy to install a keylogger that will capture the pswd. @camby
  
  In conversation Tuesday, 28-Feb-2017 12:38:02 UTC permalink
- Charles Dexter (irae@quitter.is)'s status on Tuesday, 28-Feb-2017 13:04:37 UTC Charles Dexter
  in reply to
  - Moon-doggy cambycambs
  - Hallå Kitteh
  @drymer @camby @clacke or even replace sudo / other elf files to achieve the same goal
  
  In conversation Tuesday, 28-Feb-2017 13:04:37 UTC permalink
- Charles Dexter (irae@quitter.is)'s status on Tuesday, 28-Feb-2017 13:08:03 UTC Charles Dexter
  in reply to
  - Moon-doggy cambycambs
  - Hallå Kitteh
  @drymer env_reset option in sudoers @camby @clacke https://quitter.is/attachment/799184
  In conversation Tuesday, 28-Feb-2017 13:08:03 UTC permalink
  Attachments
  1. Untitled attachment
    https://quitter.is/file/18010ab9a54ce1dd87d8fea0e54eef578f322b66a638a344fd6982bbda025e7c.jpg
  drymer #en proceso de migrar likes this.

Public

Conversation

Notices

Feeds