Another reason to prefer a real root over sudo
Mark Kirkwood
markir at paradise.net.nz
Fri Feb 6 03:00:38 UTC 2009
I wrote:
>
> Someone gets access to res's account, *installs* a keylogger and waits
> until they have your root password.
Sorry - very poor choice of wording, as a non-root user cannot 'install'
anything in the usual sense ... however the res account config is
completely amenable to manipulation (path, IFS, alias etc) so capturing
the root password or doing something equivalent (arranging to alter the
-c arg of su to create a nice setuserid 0 version of /bin/dash for
instance) is relatively easy.
Cheers
Mark
More information about the ubuntu-users
mailing list