Elevated Privs Notification
Scott Robinson
scott_ubuntu at scott.tranzoa.net
Mon Oct 23 10:10:49 BST 2006
On Mon, Oct 23, 2006 at 09:19:11AM +0200, Martin Pitt wrote:
> I'd rather not patch sudo to do that. sudo carefully avoids exposing
> information about who has elevated privileges and sets logging traps
> everywhere (some security through obscurity which is indeed useful on
> servers), and I wouldn't like to see that weakened. We had a long
> discussion about that when we patched sudo to check which user can
> execute commands as root, and after that we reverted.
>
Basically, the idea is nice but it can't happen for security reasons.
That's fair.
Thanks!
Scott.
--
http://quadhome.com/ - Personal webpage
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: Digital signature
Url : https://lists.ubuntu.com/archives/sounder/attachments/20061023/f75d8e07/attachment.pgp
More information about the sounder
mailing list