the '90s
Kamil
___
devel mailing list -- devel@lists.fedoraproject.org
To unsubscribe send an email to devel-le...@lists.fedoraproject.org
--
Iain Rae - Computing Officer | iainr @ inf. ed. ac. uk
School of Informatics, Univ of
On 02/05/18 17:50, Kamil Dudka wrote:
> On Wednesday, May 2, 2018 4:25:58 PM CEST Iain Rae wrote:
>> if they've got sudo privs to install software in the system area as root
>> then any malicious program is going to emulate su/sudo in which case
>> you're roote
On 02/05/18 18:05, Kamil Dudka wrote:
> On Wednesday, May 2, 2018 4:34:51 PM CEST Stephen John Smoogen wrote:
>
>> This leads to the problem outlined in
>> https://xkcd.com/1200/ where the user account is more precious than
>> having root.
> Wait. If you have full root access, you have automati
On 03/05/18 09:39, Tomas Orsava wrote:
I just wanted to say that many users would not need sudo access at
all if they
were able to install software to their home directory in a way that
it works
out of the box.
oh yes, that would be the ideal situation, and if ~/.login/bin is so
stand
On 04/05/18 09:50, Jonathan Wakely wrote:
On 03/05/18 12:23 -0400, R P Herrold wrote:
By convention additions to the path come LAST in priority,
because of well known privilege escalation attack approaches
(the incautious admin sits down at a 'trapped' nominally sick
workstation, and fails to
On 22/06/18 20:56, Till Maas wrote:
On Fri, Jun 22, 2018 at 07:24:54PM +0200, Björn Persson wrote:
Till Maas wrote:
I do not see any reason why a user would put something in ~/bin that
would mask something in /usr/bin except to actually mask the binary. It
is the same with other user configur
On 25/06/18 10:20, Zbigniew Jędrzejewski-Szmek wrote:
On Mon, Jun 25, 2018 at 12:21:46AM +0100, Iain Rae wrote:
On 22/06/18 20:56, Till Maas wrote:
On Fri, Jun 22, 2018 at 07:24:54PM +0200, Björn Persson wrote:
Till Maas wrote:
I do not see any reason why a user would put something in
