General :: Make Shared Keys .ssh/authorized_keys And Sudo Work Together?

Jul 15, 2010

I've setup the .ssh/authorized_keys and am able to login with the new "user" using the pub/private key ... I have also added "user" to the sudoers list ... the problem I have now is when I try to execute a sudo command, something simple like:

$ sudo cd /root

it will prompt me for my password, which I enter, but it doesn't work (I am using the private key password I set)Also, ive disabled the users password using

$ passwd -l user

I am trying to harden my system ... the ultimate goal is to use pub/private keys to do logins versus simple password authentication. I've figured out how to set all that up via the authorized_keys file.Additionally I will ultimately prevent server logins through the root account. But before I do that I need sudo to work for a second user (the user which I will be login into the system with all the time).

For this second user I want to prevent regular password logins and force only pub/private key logins, if I don't lock the user via" passwd -l user ... then if i dont use a key, i can still get into the server with a regular password.But more importantly I need to get sudo to work with a pub/private key setup with a user whos had his/her password disabled.

1) I've adjusted /etc/ssh/sshd_config and set PasswordAuthentication no This will prevent ssh password logins (be sure to have a working public/private key setup prior to doing this

2) I've adjusted the sudoers list visudo and added

root ALL=(ALL) ALL
dimas ALL=(ALL) NOPASSWD: ALL

3) root is the only user account that will have a password, I am testing with two user accounts "dimas" and "sherry" which do not have a password set (passwords are blank, passwd -d user)

The above essentially prevents everyone from logging into the system with passwords (a public/private key must be setup). Additionally users in the sudoers list have admin abilities. They can also su to different accounts. So basically "dimas" can sudo su sherry, however "dimas can NOT do su sherry. Similarly any user NOT in the sudoers list can NOT do su user or sudo su user.

View 3 Replies


ADVERTISEMENT

Debian Configuration :: Make Fn Keys Work Independently Of Environment

Jan 5, 2016

I want fn* keys working for all users in all DE/WM and at tty too. I want it even if nobody logged in. Is it possible? How to set it up?

I mean these keys:

toggle wifikbd backlight +/−screen backlight +/−enable/disable screentoggle screensenable/disable touchpadvolume controls

I understand that some of them may work only with Xorg (e.g. toggle screens), but screen and kbd backlight and volume may work at tty too (because I can change this from tty when xorg is down). I know how to do it all from the console, but I want to bind keys with actions.

E.g. I can change kbd backlight with dbus and attach this action to key in my wm config, but it is not what I want. I want to make it global. I don’t understand which layer may provide the functionality for all users. Now only two keys works as I expect: toggle wifi and toggle touchpad. I haven’t set it up, it works out of the box.

Asus N56VZ, Debian stretch.
Code: Select alluname -a
Linux isquabook 3.16.0-4-amd64 #1 SMP Debian 3.16.7-ckt11-1 (2015-05-24) x86_64 GNU/Linux

View 4 Replies View Related

Debian :: Checkinstall" Seems To Be Not Installed "sudo Apt-get Make" Does Not Workcheckinstall" Seems To Be Not Installed "sudo Apt-get Make" Does Not Work

Feb 12, 2011

So installing a programm is a problem. I like to install Aqualung. "/.configure" works. But "make" seems to be not installed. "checkinstall" seems to be not installed "sudo apt-get make" does not work. I have no internet connection with linux, because I have no idea how I install the network card. I guess this sudo command use internet? Is there another way to compile that program? (And just by the way, why must this be so difficult?

View 3 Replies View Related

General :: Possible To 'include' A Global SSH Authorized_keys File?

Apr 22, 2010

Is it possible to 'include' a global SSH authorized_keys file?

For example, I have user accounts user1,user2,user3 and my user name is Benjamin. I want to be able to use my ssh key to authenticate as each of these users. I can manually copy my key to each .ssh/authorized_keys file individually, but is there a way to simply include /home/Benjamin/.ssh/global_authorized_keys in each of these user's authorized_keys file without manually adding and removing?

View 2 Replies View Related

General :: Make Nm-applet Store Keys Under KDE?

Apr 13, 2010

I know it is possible to have the Gnome nm-applet store keys under KDE (Fedora's KDE flavor does it by default) however I am at a loss as to how to make it do this on Ubuntu. It is a pain having to look up my wifi key(s) every time I boot my system up. I have the gnome keyring installed but this did not resolve the issue.

View 1 Replies View Related

OpenSUSE Install :: Revert The Changes Or Change The Permissions Again To Root:root Or Make Sudo Work

Aug 10, 2011

Accidentally I changed the ownership of all the directories under / to my own instead of root:root. Now I am unable to use sudo and many bad things are happening. Is there a way to revert the changes or change the permissions again to root:root or make sudo work ?

View 3 Replies View Related

Ubuntu :: Make Sudo Act More Like The Debian Sudo?

Jul 2, 2011

I have read a lot of questions from people wanting to take Debian (or some other distribution) and make its sudo command act more like the way Ubuntu's sudo does. I want to do the exact opposite, I want to make Ubuntu's sudo command act more like the sudo command from another distribution. ie I want there to be one root password

View 8 Replies View Related

General :: Make Sudo Ask For The Root Password?

Jul 9, 2010

When I run sudo as a normal unprivileged user, it asks for my password, not the root password. That's often convenient, but it reduces the amount of information someone would have to have in order to run commands as root. So how can I make sudo ask for the root password instead of the invoking user's password? I know it'd be done with a line in /etc/sudoers, but I can never seem to properly parse the BNF grammar in the man page to figure out exactly what to write.

View 4 Replies View Related

General :: Getting F Keys To Work In Terminal Emulation?

Jan 28, 2010

I'm running Debian (both Sarge and Lenny, on different systems) under Gnome and have a number of thin client workstations that connect to a software application on an AIX server. I'm using gnome-terminal to provide terminal emulation for this software. Unfortunately, the emulation leaves something to be desired, and doesn't catch all of the F keys properly. It seems F1-F4 act as some form of escape key, exiting out of the software back to the command line, when they should be performing different functions in the software. F5 and F6 work as they should in the emulation. Is there a setting I can apply to my gnome-terminal launcher that will make this behave like it I want? The terminal should ideally match the behavior of a Link MC5 terminal (we have some of these old beasts still around, still crunching away), but alas, I don't know how to implement this.

View 2 Replies View Related

General :: Make A Shared Folder For Usage In Virtualbox?

Jul 16, 2011

I have a similar question: How to make a share folder of virtualbox if I have installed linux Ubuntu 10.10 in virtualbox machine virtualbox is my guest machine and Linux Mint is my host machine. I have installed VirtualBox OSE in Linux Mint and I have installed Windows XP/7, made a sharing folder from guest machine Windows XP/7. My host machine is Linux Mint/Ubuntu, I mean it is on my PC. How to make a share folder in virtual machine linux ubuntu 10.10 LTS in virtualbox OSE to host machine Linux Mint 11 Katya?

View 2 Replies View Related

General :: Ssh Without A Password (setting Up Ssh Keys Doesn't Work)?

Mar 9, 2011

I want to ssh, scp, git fetch, etc. without a password. I saw the previous questions, and closed ones regarding this issue, but the suggestion seems to be to use ssh keys. However, after setting up ssh keys, I am still asked for my password (it's not asking for my private key password; it's asking for my login password). How am I supposed to set this up so that it only uses my private key for authentication?

View 2 Replies View Related

General :: Ctrl-Alt-Fn Keys Don't Work In Vmware / Sort It?

Dec 12, 2010

I am using windows XP as my host machine and vmware workstation 6 to install and run RHEL 5. I have set the inittab to runlevel 5. While i am in gnome, i tried pressing

Ctrl-Alt-F3 and nothing happens. I searched the net and found that i should do this

Ctrl-Alt-Shift-F3. It worked and kinda throwed me to shell mode. When i issued runlevel command it showed me

N 5

Now when i tried to go back to gnome by pressing

Ctrl-Alt-Shift-F5 it didnt work !! i tried all other combinations

Ctrl-Alt-Shift-(F1-F5) but no response.

View 5 Replies View Related

Ubuntu Networking :: Connect VPN Client To Safe At Office 500 Using Pre-shared Keys?

Feb 4, 2010

has anyone been able to connect a Linux VPN client to a safe@office 500 using pre-shared keys?From windows, I can establish a IPSec/L2TP(also PSK) connection with no issues(No third party software. Just created a new connection in XP).I have tried using StrongSwan and xl2tpd on Karmic without success.PPPd never gets launched. To me it seems like this should work given I can create a vpn connection directly from WinXP without installing any checkpoint clients.

View 3 Replies View Related

General :: Make Sudo Session An Hour And Not Few Minutes In Ubuntu 10.04?

Jun 7, 2010

How I can make sudo Ubuntu 10.04 session an hour and not few minutes?

Now I have to write my password for sudo commands every few minutes.

View 4 Replies View Related

General :: Enter Some Keyboard Keys At Startup And Assuming That Won't Work?

Apr 19, 2011

this may not be the right place to ask this, but my sister has a macbook and the keyboard does not want to work. i have looked online and i see that the main cause of this problem is in Leopard (correct me if im wrong). So i was wondering if perhaps using linux would solve this problem or if the problem is more hardware related than os related.

Also, how would i go about booting into a linux cd? since u need to enter some keyboard keys at startup and assuming that won't work, is there another way?

View 2 Replies View Related

General :: Sudo Command Doesn't Work

Oct 17, 2010

I want to install some software using sudo apt-get command,but it dosen't work.(my network works well) how to handle it? below is the output of terminal:

@ubuntu:~/Downloads$ sudo apt-get install build-essential cdbs fakeroot dh-make debhelper debconf libstdc++6 dkms libqtgui4
Reading package lists... Done
Building dependency tree

[Code].....

View 4 Replies View Related

General :: Ubuntu / Sudo Also Doesn't Work

Jun 30, 2011

I have ubuntu server 8.x which works Ok but the other day I changed the owner of some files "the directory /etc" from root me. Now a lot commands do not work like reboot and such. So I tried to put ownership back to root and I can't. I say I dont have proper privilege. Sudo also doesn't work. I conect to the server using ssh with putty. What could I do to fix the problem? Update to the new version? This server has been working really well for a few years. The reason I changed the owner of the directory to myself is so I could edit some config files from my windows machine using a FTP client like WinSCP.

View 3 Replies View Related

General :: Aliases Work After Running Sudo SU Command?

May 7, 2010

I can make aliases fine by editing the .bashrc file in my home directory, but the first thing I do when I open a terminal window is sudo su so I don't have to type sudo in front of every command. The problem is, I am then not able to use my aliases. How can I make aliases that work after I run the sudo su command?

View 2 Replies View Related

General :: Why Doesn't 'sudo Gedit' Work In Vinagre

Oct 13, 2010

I've set up a low cost box with Ubuntu Lucid Lynx at home behind a router, and managed to get remote access running. My goal is to be able to host a small website and work on it remotely, so I isntalled ftp (vsftpd). When I tried to edit the vsftpd.conf file in Vinagre from work, I could only open it read-only, no surprise. When I tried 'sudo gedit' or 'sudo gedit /etc/vsftpd.conf' from terminal in Vinagre, I received the prompt for the password to elevate privileges (again, expected); however, after I hit Enter, nothing happens. I've tried a bunch of different things, but I can't get it to work. I can stop & start my ftp service with 'sudo service vsftpd stop/start' and it seems to work fine.

View 2 Replies View Related

General :: F3 - F5 Keys Incorrectly Behaving As Audio Keys / Remap Them To Original Meaning?

Apr 17, 2010

I don't know if this is a configuration issue or a hardware issue, but I have a Kinesis Advantage USB keyboard and for some reason the F3-F5 keys aren't responding as they used to. They don't respond to anything and, when I tried using F5 on Emacs, it said <XF86AudioNext> is undefined, so I guess it's a weird mapping problem.

Any idea how I could remap them to the original meaning?

View 2 Replies View Related

General :: Re-mapping Non-standard Keys To Modifier Keys?

Apr 7, 2011

I'm running Debian (Squeeze) and I have a toshiba portege m700. It has five buttons on the front just under the screen, which are the only ones accessible when you flip the screen over into tablet mode. One of them is for rotating the screen, and another is for switching to external display. I want to remap the remaining three to control, alt and super so that I can use shortcuts with the stylusThe problem is, when I used showkey to find out the key codes, I found out that each button generates more than one key code:Button 1:

key 126 press >> super_r, although this is distinct from the actual super key (125)
key 7 press >> 6
key 7 release
key 126 release

View 4 Replies View Related

General :: Sudo Pppoeconf Made DSL Working But NetworkManager Applet In Panel Ceased To Work

Nov 1, 2009

A fresh installation of ubuntu 9.10 stopped my DSL internet connection. sudo pppoeconf solved the problem of net, but NetworkManager applet in panel now not working. it says wired networks, device not managed.

View 2 Replies View Related

Security :: Centralized Authorized_keys (AuthorizedKeysFile) For Sshd

Mar 9, 2010

I have a RHEL server with users logging in via ssh. I want to start using public keys instead of passwords with ssh. But public key is as good as a rotten tomato if it is unpassphrased and I cannot guarantee that all users will use passphrases. Therefore I will generate both private and public key on the server and will distribute the private key to the user via user-friendly web interface and thats where I will force them to use passphrase. I know they can change later the passphrase or remove it totally but my users are not so advanced.

So now I am trying to setup a centralized authorized_keys file with to be able to make them only root writable so they cannot put their own public keys on the server , it will be handled by scripts. Now the actual problem. I created /etc/ssh/keys directory instead of ~/.ssh and changed AuthorizedKeysFile to /etc/ssh/keys/%u in sshd_config But when I try to connect with the key I get the following error in the logs (after enabling DEBUG3 in sshd_config)

<CUT>
Mar 8 15:22:28 stagesmpp sshd[12248]: debug3: mm_request_receive entering
Mar 8 15:22:29 stagesmpp sshd[22358]: debug2: channel 0: rcvd adjust 33544
Mar 8 15:22:30 stagesmpp sshd[12248]: debug3: monitor_read: checking request 20

[code]...

View 2 Replies View Related

General :: 6.13 GMP-5.0.0 LFS Make Error - Cannot Open Shared Object File: No Such File Or Directory

Jun 10, 2010

I'm currently stuck at 6.13 GMP-5.0.0 of the LFS installation. After running make, I receive the following:

error while loading shared libraries: libbfd-2.20.so: cannot open shared object file: No such file or directory
make[2]: *** [libmpn.la] Error 127
make[2]: Leaving directory `/sources/gmp-5.0.0/mpn'

[code]....

View 5 Replies View Related

Ubuntu :: Make Certain Keys Change Brightness

Jul 6, 2010

I want to set fn + Up or Down Arrow to change the brightness of the screen, instead of fn + F4 and F5. However, I don't know the command to do that, and I can't find it in Keyboard Shortcuts.I've seen something about editing a file in /var, but that requires root permissions.

View 9 Replies View Related

Slackware :: Make Special Keys Run Commands Without X?

Jun 6, 2010

I'm installing Slackware 13.1 on a Samsung N150 netbook and am stuck trying to make the special keys do their normal functions when using a virtual terminal, that is not under X. Under X + Xfce it can be done via Menu->Settings->Keyboard->"Application Shortcuts".

In essence the question is how to make a special key (example Fn+Up to increase screen brightness) run a command in the background.

Changed title and text to make clear that the command should not run in a virtual terminal but while the display is being used for a virtual terminal, that is after Ctrl+Alt+F2 for example.

View 4 Replies View Related

Ubuntu :: Make Shift+Numpad Act As Home/End Keys?

Sep 1, 2011

In Ubuntu used to be a keyboard option called "Make Shift+NumPad work like MS Windows" or something. It allowed me to press for example Shift+NumPad 7 and it would get registered as the "Home" key. Without that option the shift key acts like a temporary NumLock and it'll pick up a "7" instead. My regular Home/End keys are somewhat out of reach, so I wonder where the setting is in XFCE. I'm using the latest XUbuntu 11.04.

View 1 Replies View Related

General :: Sudo Cd /root Gives Sudo - Cd - Command Not Found

Jan 6, 2011

Kernel 2.6.21.5, Slackware 12.0

Code:

Code:

On the other hand

Code:

So, I do not understand why the notification "sudo: cd: command not found", considering cd is a bash built-in command.

View 3 Replies View Related

General :: "sudo Su - Someuser -c Xterm" Doesn't Work

Oct 2, 2009

I have a user A that need to log into a linux box, change to user B, and then fire up a GUI.

I've tried this:

Code:

[userA@server ~]$ sudo su - userB -c "xterm"
X connection to localhost:10.0 broken (explicit kill or server shutdown).

Running "echo $DISPLAY" shows the same value for user A as for user B when I first run "sudo su - userB". I thought that if the $DISPLAY variable is set correctly this would work, but apparently it doesn't. Does anyone else here know how to get this working?

EDIT: I forgot to mention that I'm SSH-ing into the server, and have x-forwading enabled.

View 1 Replies View Related

Ubuntu :: Num Pad And Function Keys Won't Work?

Jul 3, 2010

I recently put Ubuntu on my HP G series laptop that originally had Windows Vista and ever since some select function keys (i.e. dim/brighten display) and the num lock/num pad won't work. Why is this and can I fix it?

View 1 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved