Re: sudo and command line expansion
From: all mail refused (elvis@notatla.demon.co.uk)
Date: 12/19/02
- Next message: Sanface Software: "pdfcrypt 2.1"
- Previous message: Felix Havemann: "Re: sudo and command line expansion"
- In reply to: Felix Havemann: "Re: sudo and command line expansion"
- Next in thread: Jay G. Scott: "Re: sudo and command line expansion"
- Reply: Jay G. Scott: "Re: sudo and command line expansion"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: elvis@notatla.demon.co.uk (all mail refused) Date: Wed, 18 Dec 2002 23:28:57 +0000 (UTC)
In article <atqup9$hj4$2@newsfeed1.server.iphh.net>, Felix Havemann wrote:
>>>want a person to be root. Don't give sudo access to something that can make
>>>shells calls outside of itself as well (i.e. :!<command> in vi). Etc.
>Even less can call an editor... mostly "vi". So do not let sudoers use less
>either.
"less" and "more" are problematic here. "pg" has a supposedly safe option
of which I don't have the docs to hand.
-- decoy mail addresses: obtain username via 0x4f/tcp or 0x50/tcp send sir_nat_the_brat@hotmail.com to submit@spamarchive.org
- Next message: Sanface Software: "pdfcrypt 2.1"
- Previous message: Felix Havemann: "Re: sudo and command line expansion"
- In reply to: Felix Havemann: "Re: sudo and command line expansion"
- Next in thread: Jay G. Scott: "Re: sudo and command line expansion"
- Reply: Jay G. Scott: "Re: sudo and command line expansion"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
