that darned ROOT problem
Mario Vukelic
mario.vukelic at dantian.org
Wed Sep 28 17:45:25 UTC 2005
On Wed, 2005-09-28 at 19:14 +0200, Mario Vukelic wrote:
> What stops the installing user from putting a trojan
> into /usr/bin during the install? Nothing.
Replying to myself, yadayada :)
I'm stupid. Of course what I said there doesn't even matter, because
otherwise the installing user is root anyway. I still totally fail to
see the security hole though. Anyway, I think this has been discussed to
death (Google has 621,000 hits for ubuntu+root+security).
I must however say I would very much like it to have su give a
reasonable answer when someone uses it.
More information about the ubuntu-users
mailing list