Re: localeconf package

To: debian-devel@lists.debian.org
Subject: Re: localeconf package
From: Gustavo Noronha Silva <kov@debian.org>
Date: Sun, 17 Feb 2002 22:25:09 -0300
Message-id: <[🔎] 20020217222509.0625b5a5.kov@debian.org>
In-reply-to: <[🔎] 1013993845.1161.52.camel@laptop2.internal.licquia.org>
References: <[🔎] 20020209120846.GA3528@localhost> <[🔎] 1013306292.1239.23.camel@laptop2.internal.licquia.org> <[🔎] 20020211083319.GA16850@tirnanogth.lri.fr> <[🔎] 1013492398.5890.39.camel@server1> <[🔎] 20020212043406.7c1691ea.kov@debian.org> <[🔎] 1013547309.1379.387.camel@laptop2.internal.licquia.org> <[🔎] 20020212215053.GK17349@deadbeast.net> <[🔎] 20020216000718.0ed16e89.kov@debian.org> <[🔎] 1013885217.9645.11.camel@server1> <[🔎] 20020217004410.0699e3ab.kov@debian.org> <[🔎] 1013993845.1161.52.camel@laptop2.internal.licquia.org>

On 17 Feb 2002 19:57:25 -0500
Jeff Licquia <licquia@debian.org> wrote:

> Uh... I use gnome-sudo every day for an unrelated thing, and it works
> fine for me.
sure, but you are allowed to run /usr/lib/gnome-sudo/gnome-sudo-helper
with sudo, right?

> 
> gnome-sudo-helper is a shell script that sets up X stuff before calling
> any program you pass it, yes.  OTOH, it's a simple shell script,
> non-setuid (as if that would work anyway).  You still need to gain root
> via some other method; if you can do that, you don't need
> gnome-sudo-helper (unless your l33t programz need an X display).
yes, I know it... now let's see what we can do with it:

[/usr/lib/gnome-sudo]
[kov]@[couve] $ mkdir /tmp/a
[/usr/lib/gnome-sudo]
[kov]@[couve] $ sudo `pwd`/gnome-sudo-helper /tmp/a /bin/sh
GNOME_SUDO_DONE sh-2.05a# 

tchan! I'm now root, with no effort... this is a root hole, I may be wrong,
anyway, and you don't need to be able to exec gnome-sudo-helper as
root with sudo, but how do you get gnome-sudo to work then?

> > is it that difficult to use su instead of sudo? I think it is a lot
> > safer and a lot more user friendly
> 
> The configlets need a way to run programs as root (specifically debconf
> stuff and the postinsts of the programs they configure).  Any way they
> can do that is fine.
> 
> Unfortunately, the only way I know of to ask for the root password via
> an X window halfway safely (and without the ugliness of "xterm -e") is
> with gnome-sudo.  If you have any better ways, let me know.
sure I know it, what I mean is: would it be difficult to hack a 'gnome-su'
instead of 'gnome-sudo'? that would be more user friendly, IMO, as
one would not have to mess with /etc/sudoers... I'll take a look at
kdesu

[]s!

-- 
    Gustavo Noronha Silva - kov <http://www.metainfo.org/kov>
*---------* -+-+--+-+--+-+--+-+--+-+--+-+--+-+--+-+--+-+--+-+-+
|  .''`.  | Debian GNU/Linux: <http://www.debian.org>         |
| : :'  : + Debian BR.......: <http://debian-br.cipsga.org.br>+
| `. `'`  + Q: "Why did the chicken cross the road?"          +
|   `-    | A: "Upstream's decision." -- hmh                  |
*---------* -+-+--+-+--+-+--+-+--+-+--+-+--+-+--+-+--+-+--+-+-+

Reply to:

Follow-Ups:
- Re: localeconf package
  - From: Jeff Licquia <licquia@debian.org>

References:
- localeconf package
  - From: Martin Butterweck <martin_butterweck@gmx.de>
- Re: localeconf package
  - From: Jeff Licquia <licquia@debian.org>
- Re: localeconf package
  - From: Jean-Christophe Dubacq <Jean-Christophe.Dubacq@lri.fr>
- Re: localeconf package
  - From: Jeff Licquia <jeff@licquia.org>
- Re: localeconf package
  - From: Gustavo Noronha Silva <kov@debian.org>
- Re: localeconf package
  - From: Jeff Licquia <licquia@debian.org>
- Re: localeconf package
  - From: Branden Robinson <branden@debian.org>
- Re: localeconf package
  - From: Gustavo Noronha Silva <kov@debian.org>
- Re: localeconf package
  - From: Jeff Licquia <licquia@debian.org>
- Re: localeconf package
  - From: Gustavo Noronha Silva <kov@debian.org>
- Re: localeconf package
  - From: Jeff Licquia <licquia@debian.org>

Prev by Date: Re: [2002-02-16] Release Status Update
Next by Date: Re: localeconf package
Previous by thread: Re: localeconf package
Next by thread: Re: localeconf package
Index(es):
- Date
- Thread