[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[ale] Service account allows sudo but no login

Subject: [ale] Service account allows sudo but no login
From: leamhall at gmail.com (leam hall)
Date: Tue, 30 Jul 2013 12:28:41 -0400

Is there a good security practice for service accounts? The goal is that an
app can run as "myapp" but no one can login as myapp and myapp's password
does not expire.

So far best practice seems to be having a regular shell and no password,
with specific people/groups allowed to sudo over.

Thoughts?

Leam

-- 
Mind on a Mission <http://leamhall.blogspot.com/>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.ale.org/pipermail/ale/attachments/20130730/f0dd951b/attachment.html>

Follow-Ups:
- [ale] Service account allows sudo but no login
  - From: jim.kinney at gmail.com (Jim Kinney)

Prev by Date: [ale] [Semi-OT] How do we signify to LOPSA that we are ATL?
Next by Date: [ale] v2v
Previous by thread: [ale] [Semi-OT] How do we signify to LOPSA that we are ATL?
Next by thread: [ale] Service account allows sudo but no login
Index(es):
- Date
- Thread