hi ya
in sudo.conf ... you define what commands users can run as root...
so as long as chown is not listed... they cant "chown" anything sitting
anywhere
c ya
alvin
On Fri, 13 Jul 2001, Michel Kaempf wrote:
> On Thu, Jul 12, 2001, Ethan Benson wrote:
> > i am not certain that would solve it entirely though, how are you
> > restricting them to only chown files in a certain directory?
>
> Just an idea.. does your sudoers file protect you from attacks like the
> one below?
>
> sudo chown /place/chown/is/allowed/../../../../bin/sh
>
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
