[sudo-users] sudo and originating IPs/hostnames
christian.peper at kpn.com
christian.peper at kpn.com
Wed Apr 18 08:59:11 EDT 2012
Young,
You can use the HOSTS for that.
Just define a name for them, such as ADMINHOSTS and list your IPs there. Then use that named reference in your sudo rules.
See the example in the manual:
http://www.gratisoft.us/sudo/sample.sudoers
Chris.
-----Original Message-----
From: sudo-users-bounces at courtesan.com [mailto:sudo-users-bounces at courtesan.com] On Behalf Of Sul, Young L
Sent: 10 April, 2012 21:56
To: 'sudo-users at sudo.ws'
Subject: [sudo-users] sudo and originating IPs/hostnames
Hi,
Is it possible to control sudo by originating IP?
I want to be able to define a list of IPs that are considered 'administrative workstations,' and certain sudo commands would only be allowable if you logged in from one of those workstations.
It seems that the host alias refers to the *current* system you happen to be on, rather than the originating system.
Is this something outside the scope of sudo?
Thanks,
-y
____________________________________________________________
sudo-users mailing list <sudo-users at sudo.ws> For list information, options, or to unsubscribe, visit:
http://www.sudo.ws/mailman/listinfo/sudo-users
More information about the sudo-users
mailing list