name | mode | size |
---|---|---|
.gitignore | 100644 | 0 kb |
.travis.yml | 100644 | 0 kb |
COPYING | 100644 | 18 kb |
Makefile.in | 100644 | 1 kb |
README.md | 100644 | 1 kb |
compile | 100755 | 7 kb |
config.h.in | 100644 | 1 kb |
configure | 100755 | 111 kb |
configure.ac | 100644 | 2 kb |
conversation.cc | 100644 | 1 kb |
conversation.h | 100644 | 1 kb |
conversation_test.cc | 100644 | 4 kb |
dual_control.cc | 100644 | 1 kb |
dual_control_test.cc | 100644 | 3 kb |
logging.cc | 100644 | 0 kb |
logging.h | 100644 | 0 kb |
logging_test.cc | 100644 | 2 kb |
pam.cc | 100644 | 1 kb |
pam.h | 100644 | 1 kb |
test_support.h | 100644 | 1 kb |
test_util.h | 100644 | 1 kb |
token.cc | 100644 | 0 kb |
token.h | 100644 | 0 kb |
token_test.cc | 100644 | 2 kb |
user.cc | 100644 | 1 kb |
user.h | 100644 | 0 kb |
user_test.cc | 100644 | 2 kb |
validator.cc | 100644 | 0 kb |
validator.h | 100644 | 1 kb |
validator_test.cc | 100644 | 2 kb |
[![Build Status](https://travis-ci.org/cjdev/dual-control.svg?branch=master)](https://travis-ci.org/cjdev/dual-control)
# Dual Control
Dual Control is a PAM module that requires a user to input a generated token from another user before being granted sudo access. The module also requires that the user input the reason for his or her access request and, via `syslog`, captures all this information for future reference.
At **CJ Engineering**, we will be implementing Dual Control on our production boxes to ensure that a single engineer cannot gain write access without meeting the above-stated requirements.
Dual Control is an open source project licensed under the [GNU General Public License](https://github.com/cjdev/dual-control/blob/master/COPYING). As it stands, Dual Control is written only for machines running Linux. However, we graciously welcome contributions, particularly those related to portability to other operating systems.
## For ZFR
* setup a native project
* for Linux (docker, virtualbox)
* installer
* CI + CD
* Logging