Re: apt-get, sudo and proxies

To: debian-user@lists.debian.org
Subject: Re: apt-get, sudo and proxies
From: Felipe Sateler <fsateler@gmail.com>
Date: Fri, 07 Apr 2006 00:20:48 -0400
Message-id: <[🔎] e14pas$h0k$1@sea.gmane.org>
References: <[🔎] 4f4101bf0604061452l3dffabc6yc0ae39238b081a8d@mail.gmail.com> <[🔎] 20060407001521.GS2410@polishwonder.homeip.net>

Ryan Nowakowski wrote:
> There was a security hole found in sudo and the fix was to disallow most
> environment variables:
> http://www.debian.org/security/2006/dsa-946
> 
> - Ryan
Fix it adding env_keep = var_name to your Defaults line in /etc/sudoers.
Notice that var_name doesn't have a dollar sign. Otherwise you can remove
the env_reset, but that is apparently not recommended. Example from
my /etc/sudoers:
Defaults        env_reset, env_keep = DISPLAY
Here I keep the DISPLAY variable which allows me to launch X based apps
under sudo.
-- 

Felipe Sateler

Reply to:

References:
- apt-get, sudo and proxies
  - From: "Renato Serodio" <renato.serodio@gmail.com>
- Re: apt-get, sudo and proxies
  - From: Ryan Nowakowski <tubaman@fattuba.com>

Prev by Date: Re: win-axe clones
Next by Date: Re: vfat to ext3 without data loss
Previous by thread: Re: apt-get, sudo and proxies
Next by thread: squid and blank/empty passwords?
Index(es):
- Date
- Thread