cross-platform virus
Hein-Pieter van Braam
hp at syntomax.com
Sun Apr 9 01:36:54 BST 2006
Try opening synaptic twice in a row, the login environment that gnome is
in still holds the sudo ticket, and this it can restart an app without
asking for the password again. I am guessing that is the concern
On Sat, 2006-04-08 at 19:23 -0500, Cybe R. Wizard wrote:
> On Sat, 8 Apr 2006 19:30:10 +0200
> Alan McKinnon <alan at linuxholdings.co.za> wrote:
>
> [...]
>
> >> Obviously it wouldn't work (sudo needs to
> > > ask for a password), unless the user had done a sudo command within
> > > the last 15 minutes, and the sudo command still has a token not to
> > > ask for a new password.
> > >
> [...]
> >
> > You raise an interesting point, and technically you are correct.
> >
> > Security is always about finding that fine balance between safety and
> > disruptiveness. Currently there are very few Trojan writers out there
> > targeting *nix so for the time being we are relatively safe.
> >
> > I predict that it's only a matter of time before the target of
> > Trojans shifts away from Windows. After the first wave of them,
> > distros will respond by changing their sudo default to no tokens
> >
> Is that really a possibility? I raised a terminal, typed
> <sudo synaptic>, gave it my password and, when synaptic opened, opened
> another terminal. After <sudo gps> it still asked for my
> password, even though only a moment had elapsed. How, then, can a
> malicious program make use of my already-in-use sudo session without
> <ctl-c>ing me out of whatever program I am already running?
>
> Cybe R. Wizard
> --
> When Windows are opened the bugs come in.
> Winduhs
>
> --
> Cybe R. Wizard
> --
> Press 'START' to stop
> Winduhs
>
More information about the sounder
mailing list