Subject: Re: PermitRootLogin in SSHd (WAS: Re: Telnet logins)
To: Todd Vierling <tv@wasabisystems.com>
From: Courtney Spencer <cs380@mindspring.com>
List: port-i386
Date: 08/22/2001 10:07:41
tv@wasabisystems.c
om on Wed, Aug 22, 2001 at 09:39:08AM -0400
On Wed Aug 22, 2001 at 09:39:08AM -0400, Todd Vierling wrote:
> On Tue, 21 Aug 2001, Curt Sampson wrote:
>
> : The handy thing about permitting direct root logins is that you can
> : sdist and rsync system files (e.g., /usr/local upgrade) to a whole
bunch
> : of other machines easily. Is there any way to do this without direct
> : root logins?
>
> I think you just won that $5 sudo challenge. 8-)
Hmmm. How about utilizing the netbsd package system and allowing
certain logins to pkg_create on the sdisting machine then remotely
"sudo pkg_add" NOPASSWD any needed upgrades. Otherwise make
non-sensitive data files writable by special groups.
Chris, your money is safe.
--
Courtney