[sudo-users] Distributing the sudoers file using rsync as a non root user
Hugh_Pierce at freddiemac.com
Hugh_Pierce at freddiemac.com
Wed Sep 29 14:18:21 EDT 2004
I believe I have a solution. I put together pieces from different sources.
Create a user called rsync that is local to all boxes.
Generate no-password keys for rsync and distribute public keys.
Add the following to /etc/sudoers file: rsync ALL = (root)
NOPASSWD:/usr/local/bin/rsync, /usr/bin/rsync
Run this command as root: rsync -azv --rsync-path="/usr/local/bin/sudo
/usr/local/bin/rsync" --rsh="/usr/bin/ssh -i
/export/home/rsync/.ssh/id_dsa" /etc/sudoers rsync at server:/etc/sudoers
Of course this won't help you get the sudoers file out there unless you
already have the entry for rsync in there.
More information about the sudo-users
mailing list