[sudo-workers] How to know if running a given command requires password confirmation a priori?

Gustavo Noronha Silva kov at debian.org
Sat Jul 2 09:50:59 EDT 2005


Em Qui, 2005-06-30 às 08:50 -0500, Michael Grubb escreveu:
> You can set the listpw to never
> i.e.:
> Defautls listpw = never
> This may be a security issue that may not be acceptible in certain  
> circumstances.

I figure it could be difficult to convince the maintainers of
distributions or sudo hackers to make this the default, even if it is a
not that bad security concern.

What do you think of sudo providing a simple switch that would tell me
if a given command will require password confirmation? I am already able
to test that by actually running the command, so no security concern is
raised, I believe. That would make life much easier for my code.

Should I write a patch?

Thanks,

-- 
kov at debian.org: Gustavo Noronha <http://people.debian.org/~kov>
Debian:  <http://www.debian.org>  *  <http://www.debian-br.org>

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
URL: </pipermail/sudo-workers/attachments/20050702/52abf5e6/attachment.bin>


More information about the sudo-workers mailing list