Re: /usr/bin before /usr/local/bin?

To: William T Wilson <fluffy@snurgle.org>
Cc: Hubert Chan <hackerhue@crosswinds.net>, debian-user@lists.debian.org
Subject: Re: /usr/bin before /usr/local/bin?
From: Damian Menscher <menscher@uiuc.edu>
Date: Tue, 31 Oct 2000 22:31:08 -0600 (CST)
Message-id: <Pine.LNX.4.21.0010312228170.821-100000@intellx1.physics.uiuc.edu>
Reply-to: Damian Menscher <menscher@uiuc.edu>
In-reply-to: <Pine.LNX.4.21.0010312034020.11571-100000@benatar.snurgle.org>

On Tue, 31 Oct 2000, William T Wilson wrote:
> On 31 Oct 2000, Hubert Chan wrote:
> 
> > My sudoers file is basically just
> >   hubert ALL=(ALL) ALL
> 
> This can be extremely convenient.  But it also makes the security of the
> whole system equal to the security of your user account.
> 
> If you are worried about security, and you have a situation like this, you
> have to take as much care with your personal account as you would with
> root.  So you must never type passwords unencrypted over the network,
> leave yourself logged in, etc. unless you are sure that the situation is
> secure.

You should behave in this manner anyway.  A compromised user account is
destined to become a compromised root account.  There are too many local
root exploits to ignore the danger.

Damian Menscher
-- 
--==## Grad. student & Sys. Admin. @ U. Illinois at Urbana-Champaign ##==--
--==## <menscher@uiuc.edu> www.uiuc.edu/~menscher/ Ofc:(217)333-0038 ##==--
--==## Physics Dept, 1110 W Green, Urbana IL 61801 Fax:(217)333-9819 ##==--

Reply to:

References:
- Re: /usr/bin before /usr/local/bin?
  - From: William T Wilson <fluffy@snurgle.org>

Prev by Date: Hurrah for debian
Next by Date: Re: [OT] Mozilla and JunkBuster
Previous by thread: Re: /usr/bin before /usr/local/bin?
Next by thread: Re: /usr/bin before /usr/local/bin?
Index(es):
- Date
- Thread