Sciweavers

LISA
2008

Authentication on Untrusted Remote Hosts with Public-Key Sudo

14 years 2 months ago
Authentication on Untrusted Remote Hosts with Public-Key Sudo
Two common tools in Linux- and UNIX-based environments are SSH for secure communications and sudo for performing administrative tasks. These are independent programs with substantially different purposes, but they are often used in conjunction. In this paper, we describe a weakness in their interaction and present our solution, public-key sudo. Public-key sudo1 is an extension to the sudo authentication mechanism which allows for public key authentication using the SSH public key framework. We describe our implementation of a BSD SSH authentication module and the SSH modifications required to use this module.
Matthew Burnside, Mack Lu, Angelos D. Keromytis
Added 02 Oct 2010
Updated 02 Oct 2010
Type Conference
Year 2008
Where LISA
Authors Matthew Burnside, Mack Lu, Angelos D. Keromytis
Comments (0)