cross-platform virus
Pete Ryland
pdr at pdr.cx
Mon Apr 10 18:33:02 BST 2006
On Mon, Apr 10, 2006 at 08:27:41 +0800, John wrote:
> It would be nice if there were no way for stuff in ~, /tmp and /var/tmp
> to escalate _by any means_ to root.
If the sudoers entry was changed to something like:
Cmnd_Alias ALLPROGRAMS = /bin, /sbin, /usr/bin, /usr/sbin, /usr/local/bin, \
/usr/local/sbin, /usr/bin/X11, /usr/games
%admin ALL=(ALL) ALLPROGRAMS
then it would alleviate the problem of running code under sudo that could be
written by a bad non-root process.
Pete
More information about the sounder
mailing list