Re: Could sudo be an security issue?

To: debian-security@lists.debian.org
Subject: Re: Could sudo be an security issue?
From: Hubert Chan <hubert@uhoreg.ca>
Date: Wed, 14 May 2003 20:02:44 -0400
Message-id: <87issddql7.fsf@labatt.uhoreg.ca>
In-reply-to: <Pine.LNX.4.53.0305150904530.14598@rave.its.vu.edu.au> (Stewart James's message of "Thu, 15 May 2003 09:17:03 +1000 (EST)")
References: <Pine.LNX.4.53.0305150904530.14598@rave.its.vu.edu.au>

>>>>> "Stewart" == Stewart James <stewart.james@vu.edu.au> writes:

[...]

Stewart> Now in his mind this is removing a level of security. If
Stewart> someone manages to get my password, they also can gain access
Stewart> to root via sudo.

sudo uses PAM for authentication, so you can use one of the PAM modules
(e.g. libpam-pwdfile or libpam-dotfile which is in unstable, but AFAIK
not in stable) and set it up so that everyone can have different
passwords for sudo.

-- 
Hubert Chan <hubert@uhoreg.ca> - http://www.uhoreg.ca/
PGP/GnuPG key: 1024D/124B61FA
Fingerprint: 96C5 012F 5F74 A5F7 1FF7  5291 AF29 C719 124B 61FA
Key available at wwwkeys.pgp.net.   Encrypted e-mail preferred.

Attachment: pgpDUeSCl1cT2.pgp
Description: PGP signature

Reply to:

References:
- Could sudo be an security issue?
  - From: Stewart James <stewart.james@vu.edu.au>

Prev by Date: Re: Could sudo be an security issue?
Next by Date: Re: Could sudo be an security issue?
Previous by thread: Re: Could sudo be an security issue?
Next by thread: Re: Could sudo be an security issue?
Index(es):
- Date
- Thread