[sudo-users] Distributing the sudoers file using rsync as a non root user
Martin Schröder
ms at artcom-gmbh.de
Thu Sep 30 10:43:02 EDT 2004
On 2004-09-30 16:15:33 +0200, martin f krafft wrote:
> You are effectively giving the rsync user root rights to the local
> and all remote machines. rsync can read /etc/shadow, and rsync can
> copy binaries between machines (and locally) as root, preserving
> permissions. yay, setuid shells!
Yes. :-{
This can be controlled a bit by setting options in ~/.ssh/authorized_keys
Best regards
Martin
--
Martin Schröder, ms at artcom-gmbh.de
ArtCom GmbH, Lise-Meitner-Str 5, 28359 Bremen, Germany
Voice +49 421 20419-44 / Fax +49 421 20419-10
http://www.artcom-gmbh.de
More information about the sudo-users
mailing list