Login or Register to Ask a Question and Join Our Community


UNIX for Dummies Questions & Answers

does disabling requiretty in sudo have security implications with SSH?

 
Thread Tools Search this Thread
Top Forums UNIX for Dummies Questions & Answers does disabling requiretty in sudo have security implications with SSH?
# 1  
Old 10-05-2010
Question does disabling requiretty in sudo have security implications with SSH?
I've run into an issue running rsync remotely via SSH/sudo ...

I get the error sudo: sorry, you must have a tty to run sudo

I know that I can disable the tty in sudoers file ( !requiretty),

but my question is: is there a security risk by disabling requiretty with SSH/rsync/sudo?

Is there an alternative?

Thanks

Matt
 
Login or Register to Ask a Question

Previous Thread | Next Thread

9 More Discussions You Might Find Interesting

1. UNIX for Beginners Questions & Answers

Command disabling sudo access

Hi, I have setup password less login to sudo for a particular group. if I do sudo /usr/local/sbin/group it will take me to the group without password. Recently i executed a command scl_source as source scl_source enable devtoolset-7. After that my sudo is asking password not sure why sudo... (2 Replies)
Discussion started by: arunkumar_mca
2 Replies

2. IP Networking

Force SSH session without/disabling X11 forwarding.

I would like to disable X11 session forcefully. I have tried the following things: 1. Setting appropriate DISPLAY variable in the /etc/environment file to be "0.0" 2. I have tried setting the sshd_config parameter X11Forwarding to be "no" This session communication is happening by exchanging... (2 Replies)
Discussion started by: vaibhavvsk
2 Replies

3. Cybersecurity

Help on Ssh using sudo

I'm confused in the configuration of sudoers for one group of users. The users need to execute a app from a remote machine, in this local machine they want me to allow ssh for them using sudo for eg. sudo -u admin ssh -X euadmin@<IP address of remote> <remote script which opens a gui> It... (1 Reply)
Discussion started by: anandk
1 Replies

4. AIX

Disabling SSH direct access for an AIX user

Hello everyone, Can anyone help me please. I want to disable SSH direct access for an AIX user. For example, if I have USER1 and USER2. I want to disactivate direct access for USER2. The user must enter his login (USER1) and his password and then he can do su - USER2 . Thanks, (3 Replies)
Discussion started by: adilyos
3 Replies

5. UNIX for Dummies Questions & Answers

Pop the users one by one in sudo cat /etc/security/user

Hi Everyone, When I runthe query in ssh shell sudo cat /etc/security/user , I see half of the users cut down from the display screen. what I want to do is using the somthing like "pop" that when I hit the enter key every time the screen should move to the next user? does some one has any idea how... (4 Replies)
Discussion started by: starter2011
4 Replies

6. Shell Programming and Scripting

ssh foo.com sudo command - Prompts for sudo password as visible text. Help?

I am writing a BASH script to update a webserver and then restart Apache. It looks basically like this: #!/bin/bash rsync /path/on/local/machine/ foo.com:path/on/remote/machine/ ssh foo.com sudo /etc/init.d/apache2 reloadrsync and ssh don't prompt for a password, because I have DSA encryption... (9 Replies)
Discussion started by: fluoborate
9 Replies

7. UNIX for Advanced & Expert Users

sudo and ssh

Hi, I would like to know how i can perform a task, while performing ssh, sudo and command at the same time. What I generally do is I ssh to the server, where i created private and public, so it does not prompt me for password all the time. Then i need to run "sudo su - ldaprole" to get into... (9 Replies)
Discussion started by: john_prince
9 Replies

8. UNIX for Advanced & Expert Users

sudo and ssh

Hello, Can you config sudo to use the passphrase in the user ssh-key instead of the one in the passwd? Some users do not have local passwords on the system and instead of adding the NOPASSWD in sudoers I would like the solution I asked about above. Thx Jocke (3 Replies)
Discussion started by: jOOc
3 Replies

9. Shell Programming and Scripting

Implications of setting sensitive data in ENV

Hello people, In shell scripts if some sensitive data is set into the env so that it is available to other scripts called within those scripts -- Are there are security implications ? -- I believe the scope of those environment variables ends with the execution of the script. -- I see that... (4 Replies)
Discussion started by: tipsy
4 Replies
Login or Register to Ask a Question

LEARN ABOUT OPENSOLARIS

gksu

GKSU(1) 						      General Commands Manual							   GKSU(1)

NAME

       gksu - a Gtk+ su frontend

SYNOPSIS

       gksu [ options ] <command>
       gksudo [ options ] <command>

DESCRIPTION

       This manual page documents briefly gksu and gksudo

       gksu  is  a frontend to su and gksudo is a frontend to sudo.  Their primary purpose is to run graphical commands that need root without the
       need to run an X terminal emulator and using su directly.

OPTIONS

       These programs follow the usual GNU command line syntax, with long options starting with  two  dashes  (`-').   A  summary  of  options	is
       included below.

   Common Options:
       --user <user>, -u <user>

	      Calls <command> as the specified user

       --message <message>, -m <message>

	      Replaces the standard message shown to ask for password for the argument passed to the option

       --sudo-mode, -S

	      Use  sudo  instead  of  su as backend authentication system. Notice that the X authorization magic will not work when using sudo for
	      target users other than root.

       --title <title>, -t <title>

	      Replaces the default title with the argument

       --icon <icon>, -i <icon>

	      Replaces the default window icon with the argument

       --print-pass, -p

	      Asks gksu to print the password to stdout, just like ssh-askpass. Useful to use in scripts with programs that accept  receiving  the
	      password on stdin.

       --disable-grab, -g

	      Disables the "locking" of the keyboard, mouse, and focus done by the program when asking for password

       --ssh-fwd, -s

	      Strip the host part of the $DISPLAY variable, so that GKSu will work on SSH X11 Forwarding.

       --login, -l

	      Makes  this a login shell. Beware this may cause problems with the Xauthority magic. Run xhost to allow the target user to open win-
	      dows on your display! This is ignored if running with sudo as backend for authentication.

       --preserve-env, -k

	      Preserve the current environments, does not set $HOME nor $PATH, for example.

FILES

       /etc/gksu.conf
	      Configuration file to setup system-wide defaults for gksu/gksudo.  It provides an option to force the display grabing, also.

RETURN VALUE

       On success, gksu will return 0. If an authentication error ocurred, it will exit with error code 3. If the  user  canceled  the	dialog	or
       closed the window, it will return error code 2. On other error conditions, gksu will return 1.

NOTE

       Note that <command> and all its arguments should be passed as one single argument to gksu just like one would to when using su.

SEE ALSO

       su(1), gksuexec(1).

AUTHOR

       This manual page was written by Gustavo Noronha Silva <kov@debian.org> for the Debian GNU/Linux system (but may be used by others).

								       2003								   GKSU(1)