1 |
On 2011-12-20 12:20 PM, Florian Philipp <lists@×××××××××××.net> wrote: |
2 |
> Well, as I've said, using a/normal/ editor doesn't solve the problem |
3 |
> because you can use nano for opening a shell, thereby escalating your |
4 |
> privileges. You have to use rnano (or nano -R). This solution is not |
5 |
> really meant for the luxury of a full blown editor with arbitrary |
6 |
> arguments and capabilities. rnano doesn't read nanorc files, for |
7 |
> example. If you cannot agree on a common set of safe flags, you |
8 |
> shouldn't use sudo for this purpose. |
9 |
|
10 |
Points taken from all, thanks... |
11 |
|
12 |
I settled on requiring the -R flag for nano, and limited the files that |
13 |
he can edit, so he will simply have to live with this. |
14 |
|
15 |
Thanks all... |