[sudo-users] security problems overcome with proper configuration.

Michael Potter pottmi at gmail.com
Thu Jul 27 15:50:56 EDT 2006


I would like to hear about security problems that people have had with sudo
that they overcame by proper configuration of the sudoers file.

my favorite is tty_tickets, but I am sure some of you have some more
involved problems that were solved thru proper configuration.

my favorite security problem that I could not find a configuration option to
overcome is the fact that sudo will let you execute a script that has world
write privilege.  The tool I used before would not execute it if the
ownership or privilege were suspect.  sudo is still better in every other
way, but it is a feature that I miss.

BTW: I added the proper pronunciation of sudo (sue due) to wikipedia.


More information about the sudo-users mailing list