[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Change Passwd Via Telnet through a Perl WWW Script

On Mon, Jul 29, 2002 at 02:14:10AM -0400, Phillip Hofmeister wrote:
> On Mon, 29 Jul 2002 at 12:20:30PM +1000, Martijn van Oosterhout wrote:
> > I think a combination of sudo and chpasswd would be good for this.
> I don't, that introduces scripting vulnerabilities (remote root), the one thing
> I wanted to avoid.  Using telnet vs. su or sudo you avoid escalated privs...

Umm, the telnet will need to login as root, right? So how is this any less
secure?
-- 
Martijn van Oosterhout   <kleptog@svana.org>   http://svana.org/kleptog/
> There are 10 kinds of people in the world, those that can do binary
> arithmetic and those that can't.


-- 
To UNSUBSCRIBE, email to debian-devel-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Reply to: