Re: VI wrapper for SUDO?

To: William R Ward <bill@wards.net>
Cc: debian-security@lists.debian.org
Subject: Re: VI wrapper for SUDO?
From: Mike Renfro <renfro@tntech.edu>
Date: Thu, 29 Nov 2001 16:53:55 -0600
Message-id: <[🔎] 20011129165355.A15543@ch208h>
In-reply-to: <[🔎] m2d721gpsb.fsf@komodo.home.wards.net>; from bill@wards.net on Thu, Nov 29, 2001 at 02:45:08PM -0800
References: <[🔎] m2d721gpsb.fsf@komodo.home.wards.net>

On Thu, Nov 29, 2001 at 02:45:08PM -0800, William R Ward wrote:

> A lazy sysadmin, not thinking through the ramifications, might put
> things like "/usr/bin/vi /etc/aliases" in the sudoers file, thinking
> that it limits access.  But of course, vi has the ":e" command...

Searched groups.google.com for "secure vi shell escape", and found:

http://groups.google.com/groups?hl=en&selm=65utkq%2480p%40winx03.informatik.uni-wuerzburg.de

and it looks like nvi still supports the secure options mentioned
there.

-- 
Mike Renfro  / R&D Engineer, Center for Manufacturing Research,
931 372-3601 / Tennessee Technological University -- renfro@tntech.edu

Reply to:

References:
- VI wrapper for SUDO?
  - From: William R Ward <bill@wards.net>

Prev by Date: Re: VI wrapper for SUDO?
Next by Date: Re: VI wrapper for SUDO?
Previous by thread: Re: VI wrapper for SUDO?
Next by thread: Re: VI wrapper for SUDO?
Index(es):
- Date
- Thread