On Sun, Mar 20, 2011 at 9:03 AM, Gregory Youngblood
wrote:
> I haven't been at the command line of any of my oi systems for the while,
> but I thought sudo had been effectively replaced with pfexec. At least in
> opensolaris before it was killed. Thought pfexec was in oi too.
>
pfexec works for m
On 20 March 2011 07:13, Reginald Beardsley wrote:
> I agree it's not a major issue given the massive problem posed by the
> browsers & plugins. I was trying to point out that you really can't protect
> the user from their own ignorance. If someone lacks the wits to log out
> after executing
I haven't been at the command line of any of my oi systems for the while, but I
thought sudo had been effectively replaced with pfexec. At least in opensolaris
before it was killed. Thought pfexec was in oi too.
Sent from my Droid Incredible.
___
Ope
My comment had nothing to do w/ firefox. I moved to using a separate machine
for internet access because of firefox, but the privilege escalation issue
applies generally. This is the reason for typing "/bin/su" rather than "su".
sudo was designed to address the lack of RBAC authority in Unix
> On 17 March 2011 07:52, Reginald Beardsley wrote:
>> The use of privilege escalation from the user account using sudo(1m) or
>> similar seems to me a bad idea. It seems too easy to exploit. The browsers
>> have so many vulnerabilities, that I won't run a browser as root. It seems
>> to me tha
Why would you `sudo firefox`?
On 17 March 2011 07:52, Reginald Beardsley wrote:
> I've just switched to using OI for my internet access, so I'll be testing
> it a bit ;-)
>
> Three items:
>
> The "Report a bug"option in the OpenIndiana pulldown in Firefox doesn't
> take you to a report form. In
