[Freeipa-devel] Root accountability in a cluster
Matthew Booth
mbooth at redhat.com
Thu Oct 18 22:18:57 UTC 2007
If I want the actions of a root user to be accountable, I can insist
that users log on as themselves and then use, eg, sudo to escalate their
privileges. If I want to run a command as root on a cluster, though,
this appears to fall down. I can implement kerberos authentication for
the cluster so that I can seamlessly hop from machine to machine without
reauthenticating. However, I cannot transfer my escalated privileges in
a similar manner, without doing something like running sudo on every
target node.
Is the following feasible:
* SSH to root at foo.example.com
* Present credentials for mbooth at EXAMPLE.COM
* mbooth at EXAMPLE.COM is on an allowed list for root
* I am logged in directly as root
* My audit context is mbooth
I think all but the last step is probably possible, but I'm not sure of
that. Is it possible? Is it sane? Is anybody working on it?
Thanks,
Matt
--
Matthew Booth, RHCA, RHCSS
Red Hat, Global Professional Services
M: +44 (0)7977 267231
GPG ID: D33C3490
GPG FPR: 3733 612D 2D05 5458 8A8A 1600 3441 EA19 D33C 3490
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20071018/38211951/attachment.sig>
More information about the Freeipa-devel
mailing list