On 2/27/07, Curt Manucredo <curtm2@yahoo.de> wrote:
i could never imagine that it is possible to call a command and then have root rights for it, without authentificating on the system with a password. so i thought a daemon running as root might solve that problem (which i thought it does exist) ;-). but since today i can not imagine how sudo is doing that - it might be very difficult to explain since i couldn't find an explantion on the net. so, how is sudo doing this auth-job, even with no password-verification. how does sudo treat the system? has anyone an answer to that so i can understand it?
andrew@debian:~$ ls -l /usr/bin/sudo
-rwsr-xr-x 2 root root 91700 2006-04-15 17:39 /usr/bin/sudo
The 's' where the 'x' is usually means setuid...
So IOW sudo always runs as root, the whole authentication thing is
only to determine whether sudo should run something else.
--
Andrew Donnellan
ajdlinuxATgmailDOTcom (primary) ajdlinuxATexemailDOTcomDOTau (secure)
http://andrewdonnellan.com http://ajdlinux.wordpress.com
ajdlinux@jabber.org.au hkp://subkeys.pgp.net 0x5D4C0C58
http://linux.org.au http://debian.org
Get free rewards - http://ezyrewards.com/?id=23484
Spammers only === ajdspambucket@exemail.com.au ===