Skip to content
/ ecsu Public

Static run-as-root tool using time-based ED25519 authentication

License

AGPL-3.0 license
1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

0x2b3bfa0/ecsu

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
.github/workflows
.github/workflows
 
 
cmd
cmd
 
 
internal
internal
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 

Repository files navigation

ecsu

This is just a toy project; consider it useless and insecure unless proven otherwise.

Installation

Run make and copy the resulting ecsu binary to the target machine, then chown root:root and chmod u+s it.

Warning treat the generated ecsu-keygen binary as a key file; anybody with enough permissions to read or run it will also be able to unlock ecsu

Usage

$ ecsu-keygen
wJI7yT9ZZWTiqyYoIOlmkv3WUqDLss9wHnF7ePA8KWqXbU3KfKRDZpWRXK5l/46O7oIAtAtJy89KPKX6wKtvCA==
$ ecsu id
time-based code: wJI7yT9ZZWTiqyYoIOlmkv3WUqDLss9wHnF7ePA8KWqXbU3KfKRDZpWRXK5l/46O7oIAtAtJy89KPKX6wKtvCA==
uid=0(root) gid=0(root) groups=0(root)

Codes

The time-based codes used by this tool are just the Base64-encoded result of calling crypto/ed25519.Sign with the current timestep number (i.e. Unix time in 30 second increments)

About

Static run-as-root tool using time-based ED25519 authentication

Topics

golang ed25519 suid

Resources

Readme

License

AGPL-3.0 license
Activity

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages