sudo free-for-all
D. Michael McIntyre
michael.mcintyre at rosegardenmusic.com
Fri Dec 8 20:30:30 UTC 2006
On Thursday 07 December 2006 10:55 pm, John L Fjellstad wrote:
> It's a Debian thing. No secrets unless the user specifically ask for it
> (for instance, setting the ~/.ssh directory to 700).
I think the Debian installer asks you a question about this now, but this
behavior is the default. I don't like it either, but it's a very small point
in the scheme of things.
As for the other issue, the one with sudo, I have to wonder if this guy is
confusing the fact that everyone can *run* sudo, but it only actually works
if the user is authorized. If they aren't in the admin group with his
sudoers file as posted, then sudo should just fail.
Like this:
$ sudo ls
We trust you have received the usual lecture from the local System
Administrator. It usually boils down to these three things:
#1) Respect the privacy of others.
#2) Think before you type.
#3) With great power comes great responsibility.
Password:
Sorry, try again.
Password:
Sorry, try again.
Password:
Sorry, try again.
sudo: 3 incorrect password attempts
I'm typing his password correctly. It always fails, because this user isn't
in the admin group, and so he can never actually run anything as root.
I'll be really surprised to learn that isn't what the original poster is
experiencing.
--
D. Michael McIntyre
Author of Rosegarden Companion http://rosegarden.sourceforge.net/tutorial/
See my new music stand unfolding at http://users.adelphia.net/~silvan/
More information about the kubuntu-users
mailing list