[sudo-users] refusing to execute programs with bad perms

David Thiel lx at redundancy.redundancy.org
Wed Jun 7 15:36:05 EDT 2006


One of the well-known problems with developing an effective sudo policy
is that if someone is given write permissions to a file, and then
permission to execute that file as another user, they can effectively do
anything as that user. 

In a large environment, it can be hard to keep track of the ownership
of things like init scripts on various machines. Would it be possible
or desirable to have a sudo option to refuse to execute a binary or
script that's writable by the current user? Can anyone else think of an
alternate way to solve this problem? I think it'd be a reasonably useful
feature.

Thanks,
David



More information about the sudo-users mailing list