Elevated Privs Notification

Scott Robinson scott_ubuntu at scott.tranzoa.net
Mon Oct 23 10:10:49 BST 2006

On Mon, Oct 23, 2006 at 09:19:11AM +0200, Martin Pitt wrote:
> I'd rather not patch sudo to do that. sudo carefully avoids exposing
> information about who has elevated privileges and sets logging traps
> everywhere (some security through obscurity which is indeed useful on
> servers), and I wouldn't like to see that weakened. We had a long
> discussion about that when we patched sudo to check which user can
> execute commands as root, and after that we reverted.

Basically, the idea is nice but it can't happen for security reasons.
That's fair.



http://quadhome.com/            - Personal webpage
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: Digital signature
Url : https://lists.ubuntu.com/archives/sounder/attachments/20061023/f75d8e07/attachment.pgp 

More information about the sounder mailing list