sudo

Serg Belokamen serg.belokamen at gmail.com
Mon May 30 17:26:05 UTC 2005


In addition to my previous comment, following is an email you will get
on Ubuntu if a user with username "blah" attempts to cat /etc/shadow
file that is only accesable by root:


showof : May 31 03:21:18 : blah : user NOT in sudoers ; TTY=pts/1 ;
PWD=/home/blah ; USER=root ; COMMAND=/bin/cat /etc/shadow

On Mon, 2005-05-30 at 22:37 +0530, Rajesh Ganesan wrote:
> Hi,
> I find one real problem with ubuntu - that is, sudo. In a network (I
> have a small office, with three computers networked), any user can
> access to the root privileges with his own password with sudo. He can
> delete system files, read other persons /home/~ folders or even
> install softwares with his own password.
> I read ubuntu's justification of using sudo. Having log file of
> finding out what happened is a detective measure. How about a
> preventive measure? Does anybody please give me a suggestion? I do not
> want users to have sudo power (like in RH based distros). Disabling
> sudo service did not help me. The only thing I dislike in debian based
> distros is 'sudo'. Ubuntu is otherwise rocking!!!
> Regards,
> Rajesh
> 





More information about the ubuntu-users mailing list