Archives
Archives
| From: | Grant Taylor <gtaylor@×××××××××××××××××××××.net> | ||
|---|---|---|---|
| To: | gentoo-user@l.g.o | ||
| Subject: | Re: [gentoo-user] Update to /etc/sudoers disables wheel users!!! | ||
| Date: | Wed, 26 Oct 2022 19:29:50 | ||
| Message-Id: | 44b8fdd1-a618-ad1c-3b9b-e256ad555440@spamtrap.tnetconsulting.net | ||
| In Reply to: | Re: [gentoo-user] Update to /etc/sudoers disables wheel users!!! by Neil Bothwick |
||
| 1 | On 10/26/22 12:22 PM, Neil Bothwick wrote: |
| 2 | > You need to be root to write to /etc/sudoers.d. If someone has that |
| 3 | > access, you are already doomed! |
| 4 | |
| 5 | And what happens if someone uses the existing root-via-sudo access to |
| 6 | break sudo? |
| 7 | |
| 8 | You loose root-via-sudo access. |
| 9 | |
| 10 | Someone could become root, via sudo, edit the sudoers file without using |
| 11 | visudo, introduce a syntax problem, thereby breaking sudo (fail secure). |
| 12 | |
| 13 | You could easily do this to yourself if you don't follow best practices. |
| 14 | |
| 15 | |
| 16 | |
| 17 | -- |
| 18 | Grant. . . . |
| 19 | unix || die |
| Subject | Author |
|---|---|
| Re: [gentoo-user] Update to /etc/sudoers disables wheel users!!! | Neil Bothwick <neil@××××××××××.uk> |
| Re: [gentoo-user] Update to /etc/sudoers disables wheel users!!! | Ramon Fischer <Ramon_Fischer@×××××××.de> |