Re: Could sudo be an security issue?

To: xbud <xbud@hackphreak.org>, debian-security@lists.debian.org
Subject: Re: Could sudo be an security issue?
From: lemuel typhair <ltyphair@perdido.mine.nu>
Date: Fri, 16 May 2003 03:50:46 -0500
Message-id: <3EC4A666.6070603@perdido.mine.nu>
Reply-to: ltyphair@perdido.mine.nu
In-reply-to: <200305151631.35949.xbud@hackphreak.org>
References: <Pine.LNX.4.53.0305150904530.14598@rave.its.vu.edu.au> <3EC2D7D1.1060100@perdido.mine.nu> <200305151631.35949.xbud@hackphreak.org>

yes this is so true, but would you really give root to someone who doesnot follow the rules to begin with? if i ever saw that they did that inthe logs, the would never have root again...

xbud wrote:

Hi,
good point, but this is not entirely true.

In the case where a user simply does asudo su -or asudo sh

only the first command will be logged.

just a note in case you strictly rely on sudo's loggin capabilities to seewhat user does what on a network. :)


On Wednesday 14 May 2003 17:57, lemuel typhair wrote:

going back to root means that you do not know who did what.  sudo gets
logged, so you know who did what.  that is way more important security
wise than not running sudo and having 5 people use root wih no logging.
the second hing is that if you did wan to limit people to certain
commands you can.  with out it you are forced to give them rot, and that
means unlimited power.

Reply to:

Follow-Ups:
- Re: Could sudo be an security issue?
  - From: Brandon High <armitage@freaks.com>

References:
- Could sudo be an security issue?
  - From: Stewart James <stewart.james@vu.edu.au>
- Re: Could sudo be an security issue?
  - From: lemuel typhair <ltyphair@perdido.mine.nu>

Prev by Date: [no subject]
Next by Date: Does anybody knows of this security problem in the kernel?
Previous by thread: Re: Could sudo be an security issue?
Next by thread: Re: Could sudo be an security issue?
Index(es):
- Date
- Thread