[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: debian-user-digest Digest V2009 #643

> On Thu,23.Apr.09, 09:52:05, Matus UHLAR - fantomas wrote:
> > I guess it's because "sudo su" does not require root's password, but
> > users'. However this can have significant ipmact on system's security.

On 25.04.09 22:17, Andrei Popescu wrote:
> More than 'sudo'? BTW, there is also a '-i' option to sudo.

allowing "sudo su" is more dangerous than allowing most of commands
(not those that allow executing of subshell...)

It means that user can do anything with just his/her password, not needing
the root's.
Matus UHLAR - fantomas, uhlar@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Enter any 12-digit prime number to continue.

Reply to: