Valery_Reznic at icomverse.com
Sun Jun 22 08:59:02 EDT 2003
I wrote a small package noexec, which (I hope)
may be usefull additional to sudo.
It allow run process, "chieldless", i.e when you run something with sudo you
can be sure no escape to the shell is possible.
Project url is http://sourceforge.net/projects/noexec
Any ideas and comments ?
One importent note: it's prevent escape to the shell,
but do not think you can use it to run vi - vi is dangerous not only due to
possible escape to shell
(in the vim it can be prevented with -Z switch), but due to ability to
switch to editing another file (for example, /etc/sudoers)
More information about the sudo-users