I’ve written an article based on my internal docs on how I secured my servers with a 2nd factor for issuing sudo and su commands.
The main issue I see is that we try to secure our door and firewall as tightly as possible but once breached it’s a free for all.
Not with this. Adding a second factor only you have access to limits any attackers in doing something malicious.
Fell free to check out my how-to - here’s the “friend” link from Medium.
If you visit through this link I won’t make any money.
If you however do chose to share it, I would appreciate if you’d use the medium-share function to help and support me (financially ;)).
Cheers from Munich,