Sudo and supplemental group memberships
Todd C. Miller
Todd.Miller at courtesan.com
Thu Nov 15 14:40:01 EST 2001
In message <Pine.LNX.4.33.0111150911010.9723-100000 at mercury.gostnet.com>
so spake TJ Saunders (tj):
> I would assume that sudo would always set the credentials of the process
> to the user's UID and primary and supplemental GIDs, no matter which user.
> That user root is handled as an exception, differently than other users,
> is a little obscure and potentially confusing.
Because root can already do anything. The only exception to this
is NFS with root mapped to uid -2.
More information about the sudo-workers