[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [hobbit] client file check
- To: <hobbit (at) hswn.dk>
- Subject: RE: [hobbit] client file check
- From: "Scot Kreienkamp" <SKreien (at) la-z-boy.com>
- Date: Tue, 7 Jul 2009 10:18:49 -0400
- References: <37752EAC00ED92488874A27A4554C2F303330A2A (at) lzbs6301.na.lzb.hq> <4A525711.8090507 (at) makelofine.org> <E38DCD6606C55F499A4125611AB8D9960735DACB (at) cvsexbpd2.Corp.CVS.com>
- Thread-index: Acn+dAfMeSjSN4eqQiG1CWoUS9B/2QAAfD9QACXuoIA=
- Thread-topic: [hobbit] client file check
That doesn't work. It doesn't like the backticks in client-local.cfg.
Now my clients say no files checked.
Thanks,
Scot Kreienkamp
La-Z-Boy Inc.
skreien (at) la-z-boy.com
734-242-1444 ext 6379
-----Original Message-----
From: Brand, Thomas R. [mailto:TRBrand (at) cvs.com]
Sent: Monday, July 06, 2009 4:31 PM
To: hobbit (at) hswn.dk
Subject: RE: [hobbit] client file check
> -----Original Message-----
> From: dOCtoR MADneSs [mailto:doctor (at) makelofine.org]
>
> You could try something like this :
> in local-client.cfg add a section for this host :
> [my_host]
> file:`sudo ls /your/file`
> and in hobbit-clients.cfg add a line in your host section :
> HOST=my_host
> FILE /your/file YOUR_SWITCHES
>
> anyone disagree with it ?
Somewhat of a security risk; when using sudo, I recommend using
full path to the executable:
sudo /bin/ls /your/file
and in your /etc/sudoers file:
# Hobbit may run /bin/ls but flags are not allowed
hobbit ALL = NOPASSWD: /bin/ls [!-]*
t09trbrxs# su - hobbit
hobbit (at) t09trbrxs:~> sudo /bin/ls /root/.ssh/authorized_keys
/root/.ssh/authorized_keys
hobbit (at) t09trbrxs:~> sudo /bin/ls --color=always
/root/.ssh/authorized_keys
hobbit's password:
hobbit (at) t09trbrxs:~>
To unsubscribe from the hobbit list, send an e-mail to
hobbit-unsubscribe (at) hswn.dk