<br><br><div class="gmail_quote">On Fri, Oct 19, 2012 at 10:13 PM, Siraaj Khandkar <span dir="ltr"><<a href="mailto:siraaj@khandkar.net" target="_blank">siraaj@khandkar.net</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div class="im">On Oct 20, 2012, at 12:02 AM, Wes James wrote:<br>
<br>
> I finally have some of the functionality of:<br>
><br>
> <a href="https://github.com/comptekki/esysman" target="_blank">https://github.com/comptekki/esysman</a><br>
><br>
> updated from just PC management to Linux and Mac.<br>
><br>
> I have some questions regarding secure traffic and running as a root<br>
> process for some comands on linux/mac.<br>
><br>
> 1. How do I secure the traffic between nodes? I tried to find the email<br>
> about that the cookie was really not a security item and that the traffic<br>
> is just tcp. What is best practice to secure traffic between nodes?<br>
<br>
</div>Currently, the stable choice is a VPN tunnel between nodes on an untrusted network.<br>
<br>
Alternatively, if you feel like exploring new grounds, you can try communicating<br>
over SSH. Kenji Rikitake made the proof of concept here:<br>
<br>
<a href="https://github.com/jj1bdx/sshrpc" target="_blank">https://github.com/jj1bdx/sshrpc</a></blockquote><div><br></div><div>Ok thanks for these!</div><div> </div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<br>
<div class="im"><br>
<br>
> 2. On windows, I install the service and it has admin privs to do most<br>
> anything. What would the best way be to install an erlang service that<br>
> needs to do "root" work on linux/mac systems?<br>
<br>
</div>sudo<br><span class="HOEnZb"><font color="#888888"><br></font></span></blockquote><div><br></div><div> I've always used sudo with a password, but it looks like I could set up a user that doesn't require a password:</div>
<div><br></div><div><a href="http://www.ducea.com/2006/06/18/linux-tips-password-usage-in-sudo-passwd-nopasswd/">http://www.ducea.com/2006/06/18/linux-tips-password-usage-in-sudo-passwd-nopasswd/</a></div><div><br></div><div>
Is there a different way? Since when the app would sudo command remotely, it would ask for a password where there's no way to type it in.</div><div><br></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<span class="HOEnZb"><font color="#888888">
<br>
--<br>
Siraaj Khandkar<br>
.o.<br>
..o<br>
ooo<br>
<br>
</font></span></blockquote></div><br><div>Thanks,</div><div><br></div><div>wes</div>