On Sat, Jul 07, 2001 at 02:10:09AM +0100, Eric E Moore wrote: > I would be very shocked if you could compromise a system with a > sudoers entry of: > me hostname = (root) /bin/cat i would not, being able to read every file on the system, even if you can't write is going to lead to compromise sooner or later. > Ethan> sudo is a very large cannon which is difficult to keep aimed > Ethan> away from the foot... > > That it is. But then, the root password is basically a very large > cannon built into your shoe. i would not go that far. -- Ethan Benson http://www.alaska.net/~erbenson/
PGP signature- Re: shared root account Vineet Kumar
- Re: shared root account Simon Huggins
- Re: shared root account Eric E Moore
- Re: shared root account Nathan E Norman
- Re: shared root account Ethan Benson
- Re: shared root account Will Aoki
- Re: shared root account Steven Barker
- Re: shared root account Ethan Benson
- Re: shared root account SDiZ Cheng
- Re: shared root account Ethan Benson
- Re: shared root account Ethan Benson
- Re: shared root account Jim Breton
- Re: shared root account Ethan Benson
- Re: shared root account Jim Breton
- Re: shared root account Peter Cordes
- Re: shared root account Eric E Moore
- Re: shared root account Rainer Weikusat
- Re: shared root account Andres Salomon
- Re: shared root account Juha J�ykk�
- Re: shared root account Jason Healy
- Re: shared root account Hubert Chan
