Re: Sudo ... use or delete?

To: debian-user@lists.debian.org
Subject: Re: Sudo ... use or delete?
From: Antonio Russo <aerusso@aerusso.net>
Date: Fri, 29 Jan 2021 08:57:44 -0700
Message-id: <[🔎] 418fb79f-822c-4ed9-b610-c276a561c7ac@aerusso.net>
In-reply-to: <[🔎] e3c3f9f7-e97f-d943-ae10-4277798e67ca@mail.com>
References: <[🔎] 6c403b62-adc8-0c4f-9045-f8b892b1ebd2@sdi-baja.com> <[🔎] 878s8b68ue.fsf@iki.fi> <[🔎] e3c3f9f7-e97f-d943-ae10-4277798e67ca@mail.com>

On 1/29/21 8:54 AM, john doe wrote:
> In the case of sudo, you could deny the use of sudo by removing all
> users from the sudoers file or by denying sudo access  explicitly in the
> sudoers file.
> 
> -- 
> John Doe
> 

As I understand it, this would not have protected against the recent local
privilege escalation bug in sudo.  If you're interested in improving
security, the desire is to reduce the total amount of privileged code on
the machine.

(Though removing people from sudoers obviously helps.)

Antonio

Attachment: OpenPGP_0xB01C53D5DED4A4EE.asc
Description: application/pgp-keys

Attachment: OpenPGP_signature
Description: OpenPGP digital signature

Reply to:

Follow-Ups:
- Re: Sudo ... use or delete?
  - From: john doe <johndoe65534@mail.com>

References:
- Sudo ... use or delete?
  - From: Peter Ehlert <peter@sdi-baja.com>
- Re: Sudo ... use or delete?
  - From: Teemu Likonen <tlikonen@iki.fi>
- Re: Sudo ... use or delete?
  - From: john doe <johndoe65534@mail.com>

Prev by Date: Configuring Wacom one on debian (plasma or else [gnome,..])
Next by Date: Re: Sudo ... use or delete?
Previous by thread: Re: Sudo ... use or delete?
Next by thread: Re: Sudo ... use or delete?
Index(es):
- Date
- Thread