Hey;
The right answer is to enable public key access to root by setting
PermitRootLogin without-password
in sshd_config, restarting sshd, then distributing your key as needed. There are other things needed to make direct root login via ssh/pka a more preferred method of root access over sudo; however, that's a different topic.
In your current environment:
for h in $(cat ${list-o-hosts})
do
echo ${h}
scp ${file} ${admin}@${h}:/tmp/${file}
ssh -l ${admin} ${h} sudo mv /tmp/${file} ${dir}/${file}
ssh -l ${admin} ${h} sudo chown root:sys ${dir}/${file}
ssh -l ${admin} ${h} sudo chmod 755 ${dir}/${file}
done
The first time you access each host, you'll need to type your password. You could run the above w/o password entries if you run the loop within 5 minutes of looping through all the hosts to run a sudo command
for h in $(cat ${list-o-hosts})
do
ssh -l ${admin} ${h} sudo ls -ld /tmp
done
If you have your password in a cut/paste buffer you can simply paste it as quickly as it's requested, then run the first loop within 5 minutes.
Like I said, though, the right answer is to lock direct root access to public key authentication.
The other required items are ensure each key allowed to access root uses a forced command to log whatever it's doing via remote commands and log key fingerprints via
SyslogFacility Auth
LogLevel VERBOSE
Doug
------
Senior UNIX Admin
O'Leary Computers Inc
linkedin: http://www.linkedin.com/dkoleary
Resume: http://www.olearycomputers.com/resume.html
