[sudo-users] Distributing the sudoers file using rsync as a non root user
martin f krafft
madduck at madduck.net
Thu Sep 30 10:15:33 EDT 2004
also sprach Hugh_Pierce at freddiemac.com <Hugh_Pierce at freddiemac.com> [2004.09.29.2018 +0200]:
> Of course this won't help you get the sudoers file out there
> unless you already have the entry for rsync in there.
You are effectively giving the rsync user root rights to the local
and all remote machines. rsync can read /etc/shadow, and rsync can
copy binaries between machines (and locally) as root, preserving
permissions. yay, setuid shells!
--
martin; (greetings from the heart of the sun.)
\____ echo mailto: !#^."<*>"|tr "<*> mailto:" net at madduck
invalid/expired pgp subkeys? use subkeys.pgp.net as keyserver!
spamtraps: madduck.bogus at madduck.net
"without music, life would be a mistake."
- friedrich nietzsche
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
URL: </pipermail/sudo-users/attachments/20040930/693f5556/attachment.bin>
More information about the sudo-users
mailing list