[sudo-users] checksumming allowed scripts

Ladner, Eric (Eric.Ladner) Eric.Ladner at chevrontexaco.com
Tue Jun 14 14:36:01 EDT 2005


Tripwire does that already (there's still a free version of it, isn't
there?).  Keep them all in one place and monitor that directory.  Viola.

Eric Ladner, Systems Analyst 
RFMS IT Support

-----Original Message-----
From: sudo-users-bounces at courtesan.com
[mailto:sudo-users-bounces at courtesan.com] On Behalf Of Todd C. Miller
Sent: Tuesday, June 14, 2005 1:25 PM
To: Munich ZZ-MUC-Bilbo
Cc: sudo-users at sudo.ws
Subject: Re: [sudo-users] checksumming allowed scripts

In message
<OF6381DFB2.1E1D907C-ONC1257020.00279865-C1257020.00285149 at amadeus.n
et>
	so spake Munich ZZ-MUC-Bilbo (mucbilbo):

> can I tell sudo to save the checksums of the scripts a user is allowed

> to run and verify them every time sudo is called?

Sorry, sudo doesn't support checksum-based access restrictions.
It's on my todo list but I'm not convinced it really give a lot of added
security.

 - todd
____________________________________________________________
sudo-users mailing list <sudo-users at sudo.ws> For list information,
options, or to unsubscribe, visit:
http://www.sudo.ws/mailman/listinfo/sudo-users






More information about the sudo-users mailing list