Posts by Cirio@infosec.exchange
 (DIR) Post #AXzSYwIV3jUbZkh81w by Cirio@infosec.exchange
       2023-07-23T15:39:27Z
       
       0 likes, 0 repeats
       
       @bortzmeyer E'aspérant...
       
 (DIR) Post #Aasyp8n5yi1NbZCQTY by Cirio@infosec.exchange
       2023-10-18T06:12:54Z
       
       0 likes, 0 repeats
       
       @mjg59 All is well as long as they're not asking you to commute 😛
       
 (DIR) Post #AzZdQgSpQ5s1mIbIQq by Cirio@infosec.exchange
       2025-10-25T16:10:04Z
       
       0 likes, 0 repeats
       
       Question for admins out of curiosity :Let's assume that you are the admin of a network and you have to administrate some linux servers. How would you administrate it in a secure way ?Personnaly, I would first configure #SSH with public key authentication to connect to the machine with my admin account. Then I'd use #NOPASSWD in the sudoers file to ensure I never have to type my password on a potentially compromised machine.I know that the #NOPASSWD annoys some people but I don't see how one could protect its admin password (or equivalent like Kerberos TGT) otherwise. Besides, someone who can pivot to your account from another account has already likely complete control of your server. You just want to limit the damage there.Any other suggestion ? How do you proceed ?#linux #admin