Visually authenticating windows (Re: Toshiba Satellite 4090CDT
+ sudo ideas)
Matt Zimmerman
mdz at canonical.com
Thu Dec 23 23:52:04 CST 2004
On Thu, Dec 23, 2004 at 09:37:24PM -0500, David Mandelberg wrote:
> Matt Zimmerman wrote:
> > What would be the point of this? It sounds unrelated to the window
> > appearance, and the kernel has no business interacting with sudo.
> >
> It addresses the 'inherent weakness of the security model used by su and sudo'
> and the piggybacking issue.
No, it doesn't. There is a page in the wiki which explains.
> As for the kernel interacting with sudo, that was just an example (sorry
> for not being clear), the actual program and arguments it runs could be
> configured by /proc. The idea is just that it would prevent hijacking of
> benevolent password storing or authentication without checking
> credentials. A better way to do it would probably to prevent sudo from
> saving auth info.
sudo can be trivially configured not to cache authentication tokens, but
this doesn't address the problems, which are inherent to the nature of the
tool, not the way it is configured.
--
- mdz
More information about the ubuntu-devel
mailing list