> It is unfortunate that RedHat's SU keeps the same environment and
> specially the same PATH as this leaves the user open to a trivial
Actually doing anything else would be extremely broken.
> and then tricks root for using su from the same terminal instead of
> doing a full login or, a program who installs malicious code into the
> $HOME/bin (and madifies the .profile to place it at the head of the
> PATH) like a fake 'ls' who excs the noraml 'ls' if used by normal user
> but destroys data if the user is using it as root (after using SU, the
> user will have the same path so it will be the trojan 'ls who will be
> executed uinstead of the noraml one).
Any root user who does this screwed up a while back. How does he know the
shell is in fact running the real /bin/su and not recording his password
then running it down a pipe.
Alan
--
To unsubscribe:
mail -s unsubscribe [EMAIL PROTECTED] < /dev/null
