Sudo even more secure
Sam Morris
sam at robots.org.uk
Fri Mar 24 17:34:10 GMT 2006
Jan Claeys wrote:
> Again: I do *not* propose a system for allowing every user to install
> programs. A "solution" for that "problem" can be found in e.g. the
> 'Klik' system[1].
>
> What I propose is that apt & dpkg shouldn't have to run as root to
> install normal applications. I propose that it runs as a *less*
> privileged user to minimise the damage it can do.
This less privileged user will be equivalent to root. As soon as he can
install a program in root's PATH, he can take over the system.
--
Sam Morris
http://robots.org.uk/
PGP key id 5EA01078
3412 EA18 1277 354B 991B C869 B219 7FDB 5EA0 1078
More information about the ubuntu-devel
mailing list