[ < ] [ > ]   [ << ] [ Up ] [ >> ]         [Top] [Contents] [Index] [ ? ]

4.6.1.1 Restricting sudo usage

We recommend that you restrict sudo usage to the bare minimum that Flipper requires to operate. This is particularly important if you are using a role account (eg. an account called ‘flipper’) for Flipper to use on the nodes.

In order to do this, add the following line to your sudoers file. Always edit the sudoers file by using the visudo command.

 
flipper ALL = NOPASSWD: /sbin/ifconfig, /sbin/arping

This command instructs sudo to allow the ‘flipper’ user access to run the /sbin/ifconfig and /sbin/arping commands as root without a password.

If the path to ifconfig (see path_to_ifconfig) is different on your system, you should change the sudoers line accordingly.

If you are not using a send_arp_command in your environment, then there is no need to specify one here. If you're using something other than /sbin/arping, you should change the sudoers line accordingly.

Copyright © 2008 Proven Scaling LLC and Proven Scaling Ltd. All rights reserved.