sudo security concerns ?
Romeyn Prescott
prescor at digirom.potsdam.edu
Fri Nov 26 23:49:00 UTC 2004
At 12:19 PM -0800 11/26/04, Matt Zimmerman scribbled:
>In truth, Ubuntu's sudo-based configuration more accurately reflects the
>reality of traditional UNIX system security: users who have the ability to
>become root MUST be considered equivalent to root in terms of security.
>
>Rethinking the UNIX security model is a bit beyond the scope of securing
>Ubuntu at this point. ;-) There are ways to mitigate some the problems, but
>they are not complete solutions, and even so would require a lot of work to
>implement and maintain.
Someone's already on it: http://www.nsa.gov/selinux/
...ROMeyn
--
signat-url: http://www2.potsdam.edu/prescor/signat-url.htm
More information about the ubuntu-users
mailing list