[Tech] FW: How secure is sudo?
Franco Vite
franco.vite@tin.it
Sab 19 Ago 2000 14:20:03 CEST
> Da: Etan Scherzer <etan@WWW.NEWPORT.SGI.COM>
> Risposta: Focus on Linux Mailing List <FOCUS-LINUX@SECURITYFOCUS.COM>
> Data: Tue, 17 Aug 0100 10:04:21 -0700
> A: FOCUS-LINUX@SECURITYFOCUS.COM
> Oggetto: Re: How secure is sudo?
>
> You have a BIGGER problem with vi
>
> Once in vi, the user can simply do "!sh" and be in
> a subshell with root privilege
>
> Etan
>>> Another general question regarding sudo- what is the best
>>> way to allow users to edit other people's files- 'sudo vi',
>>> for example? I find this to pose a problem because
>>> couldn't the user 'sudo vi /etc/sudoers'? I'm assuming
>>> there is an easy way to prevent this, but am too lazy to
>>> hunt down how it is done.
>>
>> Well, probably the easiest way would be to put the user into the right
>> group, and make the right file group-writable...
>>
>> John
>>
>>
>>
>>
>> --
>> # John Madden weez@avenir.dhs.org ICQ: 2EB9EA
>> # Sys-Admin / Webmaster, Avenir Web: http://avenir.dhs.org
>> # UNIX Systems Engineer, Ivy Tech State College
>> # FreeLists, free mailing lists for all: http://freelists.dhs.org
>> # Linux, Apache, Perl and C: All the best things in life are free!
>>
uhm ... se vera e' bruttina sta cosa (cmq basta usare emacs .... :)
--
ciao Franco
utonto GNU/Linux ... momentaneamente altrove
Maggiori informazioni sulla lista
flug-tech