Re: If you care about debian's security read this

To: debian-devel@lists.debian.org
Subject: Re: If you care about debian's security read this
From: Jaak Pruulmann <jjpp@meso.ee>
Date: Mon, 4 Mar 2002 03:28:58 +0200 (EET)
Message-id: <[🔎] Pine.LNX.4.21.0203040327190.9404-100000@cu1.fut.ee>
In-reply-to: <[🔎] 20020303214210.0f74c2ef.kov@debian.org>

Hi..

On 4 Mar 2002, Gustavo Noronha Silva wrote:

> kov     ALL = (root) NOPASSWD: /usr/sbin/chroot, /usr/sbin/pbuilder,
> PASSWD: /usr/bin/apt-get

> so, notice that sudo never asks the root password and with that sudoers
> line my user cannot run /bin/sh

Um, have You ever tried

sudo /usr/sbin/chroot / /bin/sh

?

jjpp.

Reply to:

References:
- Re: If you care about debian's security read this
  - From: Gustavo Noronha Silva <kov@debian.org>

Prev by Date: Re: If you care about debian's security read this
Next by Date: Re: If you care about debian's security read this
Previous by thread: Re: If you care about debian's security read this
Next by thread: Re: If you care about debian's security read this
Index(es):
- Date
- Thread