Re: How to start a daemons remotely using ssh

tamasumalta@xxxxxxxxx writes:

Dear all,

First of all I am new to ssh and linux security however I just
encountered a problem where I would like to have access to Apache
daemon remotely.

I am thinking that using ssh to connect to the machine and then use
chkconfig to modify the status of the service would be correct way.

Please can you identify if this is the way it should be done? Are
there any risks in doing so? What should I consider if this is the
correct way (security)?

I'm gonna hazard a guest that perhaps you come from a Windows-centric
computing worldview? :-) Otherwise you wouldn't be so cautious about
the joys of the commandline :-)

Thousands of people use remote ssh command line access for this sort
of administrative task every day, and have for many many years.
Generally speaking, GUI administration tools in *nix were a) added
much later in development, b) perhaps adornments of specific
distributions in the case of service start/stop/restart GUI's,and c)
they may simply modify config files and execute commands behind the
scenes,

Security wise, you often need to be root to do these config changes.
Just don't go enabling root login via ssh. Login as your user
account, and use sudo (preferred) to do the commands you need as root,
or su - to root to do what you need once you get in.

As for your specific question about apache configuration, I'll defer
to those who've set one up lately. I have to plead ignorance of
chkconfig, but did want to give you general encouragement that there's
almost nothing you need to do administration wise in linux that can't
be done from the command line safely and often more easily than in a
GUI.

Best Regards,
--
Todd H.
http://www.toddh.net/
.

Relevant Pages

  • Re: scp non root
    ... I often see people advise to disable root ssh login access. ... The scp command is "okay" but not a great command. ... I highly recommend using rsync for copies across ...
    (Debian-User)
  • Re: HowTo Disable execution of commands whit ssh and scp/sftp
    ... > give you a fair slice of the password file in a different form. ... > a limited set of commands as root. ... command, and only that one! ... # ssh sshuser@localhost ...
    (Fedora)
  • Re: [opensuse] errant who behavior
    ... determine if someone has previously broken into a system via ssh... ... remote root logins were disabled and a weak password replaced... ... Try the "w" command and see what it returns. ... type alias to make sure the an alias has not been introduced into the ...
    (SuSE)
  • Re: sudo syntax
    ... I need to run ssh as user 'id'. ... >but am unsure if ssh was launched as 'id' or as root. ... the output of id before starting the right side ssh command. ... ``It is surprising how much new stuff users find that developers never do. ...
    (freebsd-questions)
  • RE: Linux hacked
    ... Also, what exactly did the history file show, can you paste it into a mail ... > First let me say I'm a security novice. ... > been unsuccessful in getting root back. ... > via ssh but you could su in once logged in as one of three users. ...
    (Security-Basics)