security issue with exception lists

Todd C. Miller Todd.Miller at courtesan.com
Wed Oct 15 19:00:03 EDT 2003


You cannot give someone sudo "ALL" and expect them not to be able
to get a root shell.  If you don't trust the user you should
explicitly list the commands you want them to run.

This is mentioned in the man pages.

 - todd


More information about the sudo-users mailing list