[sudo-users] security problems overcome with proper configuration.
Michael Potter
pottmi at gmail.com
Thu Jul 27 15:50:56 EDT 2006
Hi,
I would like to hear about security problems that people have had with sudo
that they overcame by proper configuration of the sudoers file.
my favorite is tty_tickets, but I am sure some of you have some more
involved problems that were solved thru proper configuration.
my favorite security problem that I could not find a configuration option to
overcome is the fact that sudo will let you execute a script that has world
write privilege. The tool I used before would not execute it if the
ownership or privilege were suspect. sudo is still better in every other
way, but it is a feature that I miss.
BTW: I added the proper pronunciation of sudo (sue due) to wikipedia.
--
potter.
More information about the sudo-users
mailing list