Is there a version of sudo that supports Ticket Exchange?
ie. if I have valid TGT it will allow me to sudo without being prompted
for a password?
It appears there is a version that supports the use of Kerberos passwords,
but I'm looking for something that uses that TGT I already have.
Last sentence should have been :
Why not use NOPASSWD?
I'm getting tired...
Met vriendelijke groet
Best regards
Bien à vous
Miguel SANDERS
ArcelorMittal Gent
UNIX Systems Storage
IT Supply Western Europe | John Kennedylaan 51
B-9042 Gent
T +32 9 347 3538 | F +32 9 347 4901 | M +32478 805
Afaik that's not available yet (however, you could integrate it yourself).
But if you already obtained a TGT, why bother authenticating again? But not use
just use NOPASSWD.
Met vriendelijke groet
Best regards
Bien à vous
Miguel SANDERS
ArcelorMittal Gent
UNIX Systems Storage
IT Supply
On Thu, 7 May 2009, miguel.sand...@arcelormittal.com wrote:
Afaik that's not available yet (however, you could integrate it yourself).
bummer.
But if you already obtained a TGT, why bother authenticating again?
Because sudo prompts me. That's what I'm trying to avoid. I'd like sudo
to
pete...@bigfoot.com wrote:
Main reason for not setting NOPASSWD is because I don't have control
over the sudoers file on most of the systems I have access to. And
the SA's are very reluctant to use NOPASSWD.
Do you know about the ksu command?
Or using a ~root/.k5login and ssh -o
pete...@bigfoot.com writes:
I'd like sudo to look at my ticket cache, see that I already have a
valid TGT and give me access without being prompted for a password.
If it helps at all, this is what ksu does. It's more limited than sudo,
but it does have some facilities for letting people run
Ravi Channavajhala ravi.channavajh...@dciera.com wrote in message
news:mailman.20.1241667589.9729.kerbe...@mit.edu...
On Thu, May 7, 2009 at 1:19 AM, Markus Moeller hua...@moeller.plus.com
wrote:
You could add a copy to the keytab with ktutil which has an uppercase
HOST
e.g.
# ktutil