Re: debian-user-digest Digest V2009 #643
- To: email@example.com
- Subject: Re: debian-user-digest Digest V2009 #643
- From: Matus UHLAR - fantomas <firstname.lastname@example.org>
- Date: Sun, 10 May 2009 18:30:01 +0200
- Message-id: <20090510163001.GA16121@fantomas.sk>
- Mail-followup-to: email@example.com
- In-reply-to: <20090425191711.GE6530@think.homelan>
- References: <20090408125713.8E6572D0CCB@liszt.debian.org> <firstname.lastname@example.org> <20090412230514.63a444a6@debian> <20090423075205.GA6560@fantomas.sk> <20090425191711.GE6530@think.homelan>
> On Thu,23.Apr.09, 09:52:05, Matus UHLAR - fantomas wrote:
> > I guess it's because "sudo su" does not require root's password, but
> > users'. However this can have significant ipmact on system's security.
On 25.04.09 22:17, Andrei Popescu wrote:
> More than 'sudo'? BTW, there is also a '-i' option to sudo.
allowing "sudo su" is more dangerous than allowing most of commands
(not those that allow executing of subshell...)
It means that user can do anything with just his/her password, not needing
Matus UHLAR - fantomas, email@example.com ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Enter any 12-digit prime number to continue.