cross-platform virus

[john]

> Do not use sudo -s. use sudo -i. sudo -s should be removed or at the
> least documented that it should never be used.
> 
> sudo -s runs your own .bashrc as root - yet your .bashrc is writable by
> your own user account - which could be compromised by a firefox flaw, or
> a flaw in your email program, etc...

But couldn't the attacker place something like alias "sudo=sudo -s #" in
your .bashrc anyway? It seems that the only solution is to protect users
from the software they run (e.g. Plash), rather than trying to stop trojans
owning root after they have already owned administrator accounts.

-- 
John C. McCabe-Dansted
Masters Student