Elevated Privs Notification

Martin Pitt martin.pitt at ubuntu.com
Mon Oct 23 08:19:11 BST 2006

Hi Scott,

Scott Robinson [2006-10-22 19:36 -0700]:
> Would this be useful to anyone else? Implementation is non-trivial, and
> will likely require a patch to sudo (to expose whether permissions are
> active).

I'd rather not patch sudo to do that. sudo carefully avoids exposing
information about who has elevated privileges and sets logging traps
everywhere (some security through obscurity which is indeed useful on
servers), and I wouldn't like to see that weakened. We had a long
discussion about that when we patched sudo to check which user can
execute commands as root, and after that we reverted.


Martin Pitt        http://www.piware.de
Ubuntu Developer   http://www.ubuntu.com
Debian Developer   http://www.debian.org

In a world without walls and fences, who needs Windows and Gates?
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : https://lists.ubuntu.com/archives/sounder/attachments/20061023/5a3a6112/attachment.pgp 

More information about the sounder mailing list