Elevated Privs Notification
Martin Pitt
martin.pitt at ubuntu.com
Mon Oct 23 08:19:11 BST 2006
Hi Scott,
Scott Robinson [2006-10-22 19:36 -0700]:
> Would this be useful to anyone else? Implementation is non-trivial, and
> will likely require a patch to sudo (to expose whether permissions are
> active).
I'd rather not patch sudo to do that. sudo carefully avoids exposing
information about who has elevated privileges and sets logging traps
everywhere (some security through obscurity which is indeed useful on
servers), and I wouldn't like to see that weakened. We had a long
discussion about that when we patched sudo to check which user can
execute commands as root, and after that we reverted.
Martin
--
Martin Pitt http://www.piware.de
Ubuntu Developer http://www.ubuntu.com
Debian Developer http://www.debian.org
In a world without walls and fences, who needs Windows and Gates?
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : https://lists.ubuntu.com/archives/sounder/attachments/20061023/5a3a6112/attachment.pgp
More information about the sounder
mailing list