Date: Mon, 9 Oct 2000 18:05:25 -0700 (MST) From: "Chad R. Larson" <chad@DCFinc.com> To: behanna@zbzoom.net Cc: stable@FreeBSD.ORG Subject: Re: Security problem with "script"? Message-ID: <200010100105.SAA27750@freeway.dcfinc.com> In-Reply-To: <Pine.BSF.4.21.0010071640460.7433-100000@topperwein.dyndns.org> from Chris BeHanna at "Oct 7, 0 04:41:13 pm"
next in thread | previous in thread | raw e-mail | index | archive | help
As I recall, Chris BeHanna wrote: > On Sat, 7 Oct 2000, Warner Losh wrote: > > No. script forks a shell. sudo tells you to do that as root. It is > > merely complying. > > Er, wouldn't that give a user root access to do anything he or she > wanted? Not unless said user was in the sudoers list, and allowed to run a shell (or something that can spawn a shell, like vi). Security is not simple, and is always diametrically opposed to convenience. -crl -- Chad R. Larson (CRL15) 602-953-1392 Brother, can you paradigm? chad@dcfinc.com chad@larsons.org larson1@home.net DCF, Inc. - 14623 North 49th Place, Scottsdale, Arizona 85254-2207 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200010100105.SAA27750>