[sudo-users] Distributing the sudoers file using rsync as a non root user

Martin Schröder ms at artcom-gmbh.de
Thu Sep 30 10:43:02 EDT 2004


On 2004-09-30 16:15:33 +0200, martin f krafft wrote:
> You are effectively giving the rsync user root rights to the local
> and all remote machines. rsync can read /etc/shadow, and rsync can
> copy binaries between machines (and locally) as root, preserving
> permissions. yay, setuid shells!

Yes. :-{
This can be controlled a bit by setting options in ~/.ssh/authorized_keys

Best regards
        Martin
-- 
               Martin Schröder, ms at artcom-gmbh.de
     ArtCom GmbH, Lise-Meitner-Str 5, 28359 Bremen, Germany
          Voice +49 421 20419-44 / Fax +49 421 20419-10
                    http://www.artcom-gmbh.de



More information about the sudo-users mailing list