Task Based Security Contexts

This is a discussion on Task Based Security Contexts within the Linux Security forums, part of the System Security and Security Related category; I was messing around with ssh trying to figure out how to give cron access to another machine for backup ...


Go Back   Usenet Forums > System Security and Security Related > Linux Security

Reload this Page Task Based Security Contexts

FAQ Members List Calendar Search Today's Posts Mark Forums Read

Reply

 

LinkBack Thread Tools Search this Thread Display Modes
  #1 (permalink)  
Old 11-01-2003
Michael B Allen
 
Posts: n/a
Default Task Based Security Contexts
I was messing around with ssh trying to figure out how to give cron access
to another machine for backup with rsync. I was thinking I could run
ssh-agent and ssh-add every time the backup server is restarted and save
the ssh-agent evironment export string:

SSH_AUTH_SOCK=/tmp/ssh-XXhHpNdn/agent.2892; export SSH_AUTH_SOCK;

and then source this from the cron script. Unfortunately so can anyone
else if an account is compermised all hosts with the public key in the
authorized_keys file for that account are compermised even if you use
ssh-agent.

So my question is; will Linux ever support key management at the task
level? Meaning, it would be far better and more secure if a security
context object could be associated with a task. It could be inherited
bestowing the privledges associated with it on to children. The security
context could maintain additional capabilites not attributed to the
default context (e.g. mount a usb camera). This functionality might take
advantage of TCPA hardware. But other processes, even those of the same
user will not be granted these privedges.

This seems superior is it not? Will Linux ever support such a feature?

Thanks,
Mike
Reply With Quote
  #2 (permalink)  
Old 11-01-2003
Jeremy Gray
 
Posts: n/a
Default Re: Task Based Security Contexts
Michael B Allen <mba2000@ioplex.com> wrote:
> I was messing around with ssh trying to figure out how to give cron
> access to another machine for backup with rsync. I was thinking I
> could run ssh-agent and ssh-add every time the backup server is
> restarted and save the ssh-agent evironment export string:
>
> SSH_AUTH_SOCK=/tmp/ssh-XXhHpNdn/agent.2892; export SSH_AUTH_SOCK;
>
> and then source this from the cron script. Unfortunately so can anyone
> else if an account is compermised all hosts with the public key in the
> authorized_keys file for that account are compermised even if you use
> ssh-agent.

First, get keychain and let it worry about what to export and where to
save it. Second, is there any reason that you can't generate a key pair
that is only used by the two hosts in question, and moreover, just for
the task of running the backup? You could also have special backup
users on both machines as well, or a passphrase-protected key, etc.

--
Jeremy A. Gray
gray@metacomet.net

"Remember the Pueblo." -- the Fourth Law of Marvin
Reply With Quote
Reply
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are Off
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT +1. The time now is 09:09 AM.

Contact Us - Usenet Forums - Archive - Top

Powered by vBulletin® Version 3.7.3
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO 3.0.0