On Thu, 2006-04-20 at 10:46 +1000, James Gray wrote: > Add "user" to the "sudo" group on "host" and you wont be prompted for the > user's password anymore (at least that's how it works on Ubuntu and RHEL).
yeah, I was scared of doing that for the reason of giving blanket root sudo powers. > Alternatively, login and run the commands interactively (but given you're > running commands directly from ssh, I'm assuming this is actually a script?). yep, trying to script it :-) > If you go with the sudo group idea, you may want to setup a special user > ("updater" or something) that can only run specific commands like "apt-get" > with sudo and even then, restrict the options that can be passed as well. Good idea, that sounds like the way to go but I expect that means setting up an SSH key with the specific command so that the "updater" user can login via SSH and do only that one thing. I want SSH logins restricted to a specified list via "AllowUsers" after a recent experience. Thanks. -- Simon Wong <[EMAIL PROTECTED]> -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html